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Abstract 

Computability logic (CL) is a systematic formal theory of computational tasks and resources, which, in 
a sense, can be seen as a semantics-based alternative to (the syntactically introduced) linear logic. With 
its expressive and flexible language, where formulas represent computational problems and "truth" is 
understood as algorithmic solvability, CL potentially offers a comprehensive logical basis for constructive 
applied theories and computing systems inherently requiring constructive and computationally meaning- 
ful underlying logics. Among the best known constructivistic logics is Heyting's intuitionistic calculus 
INT, whose language can be seen as a special fragment of that of CL. The constructivistic philosophy 
of INT, however, just like the resource philosophy of linear logic, has never really found an intuitively 
convincing and mathematically strict semantical justification. CL has good claims to provide such a 
justification and hence a materialization of Kolmogorov's known thesis "INT = logic of problems". The 
present paper contains a soundness proof for INT with respect to the CL semantics. 

1 Introduction 

Computability logic (CL) , introduced recently in [7] , is a formal theory of computability in the same sense as 
classical logic is a formal theory of truth. It understands formulas as (interactive) computational problems, 
and their "truth" as algorithmic solvability. Computational problems, in turn, are defined as games played 
by a machine against the environment, with algorithmic solvability meaning existence of a machine that 
always wins the game. 

Intuitionistic computability logic is not a modification or version of CL. The latter takes pride in its 
universal applicability, stability and "immunity to possible future revisions and tampering" ([7], p. 12). 
Rather, what we refer to as intuitionistic computability logic is just a — relatively modest — fragment of 
CL, obtained by mechanically restricting its formalism to a special sublanguage. It was conjectured in [7] 
that the (set of the valid formulas of the) resulting fragment of CL is described by Heyting's intuitionistic 
calculus INT. The present paper is devoted to a verification of the soundness part of that conjecture. 

Bringing INT and CL together could signify a step forward not only in logic but also in theoretical 
computer science. INT has been attracting the attention of computer scientists since long ago. And not 
only due to the beautiful phenomenon within the 'formulas-as-types' approach known as the Curry-Howard 
isomorphism. INT appears to be an appealing alternative to classical logic within the more traditional 
approaches as well. This is due to the general constructive features of its deductive machinery, and Kol- 
mogorov's [13] well-known yet so far rather abstract thesis according to which intuitionistic logic is (or should 
be) a logic of problems. The latter inspired many attempts to find a "problem semantics" for the language 
of intuitionistic logic [5, 12, 15], none of which, however, has fully succeeded in justifying INT as a logic of 
problems. Finding a semantical justification for INT was also among the main motivations for Lorenzen [14], 
who pioneered game-semantical approaches in logic. After a couple of decades of trial and error, the goal of 
obtaining soundness and completeness of INT with respect to Lorenzen's game semantics was achieved [3] . 
The value of such an achievement is, however, dubious, as it came as a result of carefully tuning the semantics 
and adjusting it to the goal at the cost of sacrificing some natural intuitions that a game semantics could 
potentially offer. 1 After all, some sort of a specially designed technical semantics can be found for virtually 

"This material is based upon work supported by the National Science Foundation under Grant No. 0208816 
1 Using Blass's [2] words, 'Supplementary rules governing repeated attacks and defenses were devised by Lorenzen so that 
the formulas for which P [proponent] has a winning strategy are exactly the intuitionistically provable ones'. Quoting [6], 
'Lorenzen's approach describes logical validity exclusively in terms of rules without appealing to any kind of truth values for 
atoms, and this makes the semantics somewhat vicious ... as it looks like just a "pure" syntax rather than a semantics'. 



every formal system, but the whole question is how natural and usable such a semantics is in its own right. 
In contrast, the CL semantics was elaborated without any target deductive construction in mind, following 
the motto " Axiomatizations should serve meaningful semantics rather than vice versa". Only retroactively 
was it observed that the semantics of CL yields logics similar to or identical with some known axiomatically 
introduced constructivistic logics such as linear logic or INT. Discussions given in [7, 8, 9, 10] demonstrate 
how naturally the semantics of CL emerges and how much utility it offers, with potential application areas 
ranging from the pure theory of (interactive) computation to knowledgebase systems, systems for planning 
and action, and constructive applied theories. As this semantics has well-justified claims to be a semantics 
of computational problems, the results of the present article speak strongly in favor of Kolmogorov's thesis, 
with a promise of a full materialization of the thesis in case a completeness proof of INT is also found. 

The main utility of the present result is in the possibility to base applied theories or knowledgebase 
systems on INT. Nonlogical axioms — or the knowledge base — of such a system would be any collection 
of (formulas expressing) problems whose algorithmic solutions are known. Then, our soundness theorem 
for INT - which comes in a strong form called uniform-constructive soundness — guarantees that every 
theorem T of the theory also has an algorithmic solution and, furthermore, such a solution can be effectively 
constructed from a proof of T. This makes INT a problem-solving tool: finding a solution for a given 
problem reduces to finding a proof of that problem in the theory. 

It is not an ambition of the present paper to motivationally (re)introduce and (re)justify computabil- 
ity logic and its intuitionistic fragment in particular. This job has been done in [7] and once again - 
in a more compact way — in [9]. An assumption is that the reader is familiar with at least the motiva- 
tional/philosophical parts of either paper and this is why (s)he decided to read the present article. While 
helpful in fully understanding the import of the present results, from the purely technical point of view such 
a familiarity, however, is not necessary, as this paper provides all necessary definitions. Even if so, [7] and/or 
[9] could still help a less advanced reader in getting a better hold of the basic technical concepts. Those 
papers are written in a semitutorial style, containing ample examples, explanations and illustrations, with 
[9] even including exercises. 

2 A brief informal overview of some basic concepts 

As noted, formulas of CL represent interactive computational problems. Such problems are understood as 
games between two players: T, called machine, and _L, called environment. T is a mechanical device with 
a fully determined, algorithmic behavior. On the other hand, there are no restrictions on the behavior of _L. 
A problem/game is considered (algorithmically) solvable/winnable iff there is a machine that wins the game 
no matter how the environment acts. 

Logical operators are understood as operations on games/problems. One of the important groups of 
such operations, called choice operations, consists of n,U,n,U, in our present approach corresponding 
to the intuitionistic operators of conjunction, disjunction, universal quantifier and existential quantifier, 
respectively. A\ l~l . . . I~l A n is a game where the first legal move ( "choice" ) , which should be one of the 
elements of {1, . . . , n}, is by the environment. After such a move/choice i is made, the play continues and 
the winner is determined according to the rules of Ai] if a choice is never made, _L loses. A\ U . . . U A n is 
defined in a symmetric way with the roles of _!_ and T interchanged: here it is T who makes an initial choice 
and who loses if such a choice is not made. With the universe of discourse being {1,2, 3, . . .}, the meanings 
of the "big brothers" l~l and U of n and U can now be explained by V~\xA{x) = A(l) n A(2) n A{2>) n . . . and 
LixA(x) = A(l) U A{2) U A(3) U . . .. 

The remaining two operators of intuitionistic logic are the binary o— ( "intuitionistic implication" ) and the 
0-ary $ ("intuitionistic absurd"), with the intuitionistic negation of F simply understood as an abbreviation 
for Fc^$. The intuitive meanings of o— and $ are "reduction" (in the weakest possible sense) and "a 
problem of universal strength", respectively. In what precise sense is $ a universal-strength problem will 
be seen in Section 6. As for o- , its meaning can be better explained in terms of some other, more basic, 
operations of CL that have no official intuitionistic counterparts. 

One group of such operations comprises negation -i and the so called parallel operations A, V, — >. 
Applying -i to a game A interchanges the roles of the two players: T's moves and wins become _L's moves 
and wins, and vice versa. Say, if Chess is the game of chess from the point of view of the white player, then 
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-i Chess is the same game as seen by the black player. Playing A\ A . . . A A n (resp. A\ V . . . V A n ) means 
playing the n games in parallel where, in order to win, T needs to win in all (resp. at least one) of the 
components Ai. Back to our chess example, the two-board game Chess V -i Chess can be easily won by just 
mimicking in Chess the moves made by the adversary in -i Chess and vice versa. On the other hand, winning 
Chess U -i Chess is not easy at all: here T needs to choose between Chess and -i Chess (i.e. between playing 
white or black), and then win the chosen one-board game. Technically, a move a in the fcth A-conjunct or 
V-disjunct is made by prefixing a with 'fc.'. For example, in (the initial position of) (A U B) V (C n D), 
the move '2.1' is legal for _L, meaning choosing the first n-conjunct in the second V-disjunct of the game. 
If such a move is made, the game will continue as (A U B) V C. One of the distinguishing features of CL 
games from the more traditional concepts of games ([1, 2, 3, 6, 14]) is the absence of procedural rules — 
rules strictly regulating which of the players can or should move in any given situation. E.g., in the above 
game (A U B) V (C n D), T also has legal moves — the moves '1.1' and '1.2'. In such cases CL allows either 
player to move, depending on who wants or can act faster. 2 As argued in [7] (Section 3), only this "free" 
approach makes it possible to adequately capture certain natural intuitions such as truly parallel/concurrent 
computations. 

The operation — * is defined by A — > B = (~>A) V B. Intuitively, this is the problem of reducing B to A: 
solving A — > B means solving B having A as an external computational resource. Resources are symmetric 
to problems: what is a problem to solve for one player is a resource that the other player can use, and vice 
versa. Since A is negated in (->A) V B and negation means switching the roles, A appears as a resource rather 
than problem for T in A — > B. To get a feel of —> as a problem reduction operation, the following — already 
"classical" in CL — example may help. Let, for any m, n, Accepts(m, n) mean the game where none of the 
players has legal moves, and which is automatically won by T if Turing machine m accepts input n, and 
otherwise automatically lost. This sort of zero-length games are called elementary in CL, which understands 
every classical proposition/predicate as an elementary game and vice versa, with "true" = "won by T" and 
"false" = "lost by T" . Note that then V~\xV~\y(Accepts{x, y)U^Accepts{x, y)) expresses the acceptance problem 
as a decision problem: in order to win, the machine should be able to tell whether x accepts y or not 
(i.e., choose the true disjunct) for any particular values for x and y selected by the environment. This 
problem is undecidable, which obviously means that there is no machine that (always) wins the game 
\~~\x\~~\y(Accepts(x, y) U ^Accepts(x, y)) . However, the acceptance problem is known to be algorithmically 
reducible to the halting problem. The latter can be expressed by \~~\x\~~\y(Halts(x, y) U ^Halts(x,y)) , with 
the obvious meaning of the elementary game/predicate Halts(x,y). This reducibility translates into our 
terms as existence of a machine that wins 

\~\x\~\y(Halts(x, y) U -iHalts(x, y)) — > \~~\x\~~\y(Accepts(x, y) U ^Accepts(x, y)) . (1) 

Such a machine indeed exists. A successful strategy for it is as follows. At the beginning, T waits till _L 
specifies some values m and n for x and y in the consequent, i.e. makes the moves '2.m' and '2.n'. Such 
moves, bringing the consequent down to Accepts(m 7 n) U -^Accepts(m, n), can be seen as asking the question 
"does machine m accept input n?". To this question T replies by the counterquestion "does m halt on 
n?", i.e. makes the moves 'l.m and 'l.n', bringing the antecedent down to Halts(m,n) U ^Halts(m,n). The 
environment has to correctly answer this counterquestion, or else it loses. If it answers "no" (i.e. makes the 
move '1.2' and thus further brings the antecedent down to -iHalts(m, n)), T also answers "no" to the original 
question in the consequent (i.e. makes the move '2.2'), with the overall game having evolved to the true and 
hence T-won proposition/elementary game ^Halts(m, n) — ► -^Acceptsim, n). Otherwise, if the environment's 
answer is "yes" (move '1.1'), T simulates Turing machine m on input n until it halts, and then makes the 
move '2.1' or '2.2' depending whether the simulation accepted or rejected. 

Various sorts of reduction have been defined and studied in an ad hoc manner in the literature. A strong 
case can be made in favor of the thesis that the reduction captured by our — > is the most basic one, with all 
other reasonable concepts of reduction being definable in terms of — >. Most natural of those concepts is the 
one captured by the earlier-mentioned operation of "intuitionistic implication" o— , with Ao—B defined in 
terms of — > and (yet another natural operation) o by Ao—B — (bA) — > B. What makes o— so natural is 

2 This is true for the case when the underlying model of computation is HPM (see Section 5), but seemingly not so when it 
is EPM — the model employed in the present paper. It should be remembered, however, that EPM is viewed as a secondary 
model in CL, admitted only due to the fact that it has been proven ([7]) to be equivalent to the basic HPM model. 
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that it captures our intuition of reducing one problem to another in the weakest possible sense. The well- 
established concept of Turing reduction has the same claim. But the latter is only defined for non-interactive, 
two-step (question/answer, or input/output) problems, such as the above halting or acceptance problems. 
When restricted to this sort of problems, as one might expect, o— indeed turns out to be equivalent to 
Turing reduction. The former, however, is more general than the latter as it is applicable to all problems 
regardless their forms and degrees of interactivity. Turing reducibility of a problem B to a problem A is 
defined as the possibility to algorithmically solve B having an oracle for A. Back to (1), the role of _L in the 
antecedent is in fact that of an oracle for the halting problem. Notice, however, that the usage of the oracle 
is limited there as it only can be employed once: after querying regarding whether m halts of n, the machine 
would not be able to repeat the same query with different parameters ml and n', for that would require 
two "copies" of \~~\x\~~\y(Halts(x, y) U ^Halts(x, y)) rather than one. On the other hand, Turing reduction to 
A and, similarly, our Ao- . . ., allow unlimited and recurring usage of A, which the resource-conscious CL 
understands as -^-reduction not to A but to the stronger problem expressed by oA, called the branching 
recurrence of A. 3 Two more recurrence operations have been introduced within the framework of CL ([9]): 
parallel recurrence A and sequential recurrence A. Common to all of these operations is that, when applied 
to a resource A, they turn it into a resource that allows to reuse A an unbounded number of times. The 
difference is in how "reusage" is exactly understood. Imagine a computer that has a program successfully 
playing Chess. The resource that such a computer provides is obviously something stronger than just Chess, 
for it allows to play Chess as many times as the user wishes, while Chess, as such, only assumes one play. The 
simplest operating system would allow to start a session of Chess, then — after finishing or abandoning and 
destroying it — start a new play again, and so on. The game that such a system plays — i.e. the resource 
that it supports/provides — is A Chess, which assumes an unbounded number of plays of Chess in a sequential 
fashion. However, a more advanced operating system would not require to destroy the old session(s) before 
starting a new one; rather, it would allow to run as many parallel sessions as the user needs. This is what is 
captured by A Chess, meaning nothing but the infinite conjunction Chess A Chess A. ... As a resource, A Chess 
is obviously stronger than A Chess as it gives the user more flexibility. But A is still not the strongest form of 
reusage. A really good operating system would not only allow the user to start new sessions of Chess without 
destroying old ones; it would also make it possible to branch/replicate each particular session, i.e. create 
any number of "copies" of any already reached position of the multiple parallel plays of Chess, thus giving 
the user the possibility to try different continuations from the same position. After analyzing the formal 
definition of A given in Section 3 — or, better, the explanations provided in Section 13 of [7] — the reader 
will see that A Chess is exactly what accounts for this sort of a situation. A Chess can then be thought of as 
a restricted version of A Chess where only the initial position can be replicated. A well-justified claim can 
be made that A A captures our strongest possible intuition of "recycling" / "reusing" A. This automatically 
translates into another claim, according to which Ao—B, i.e. oA — > B, captures our weakest possible — 
and hence most natural — intuition of reducing B to A. 

As one may expect, the three concepts of recurrence validate different principles. For example, one can 
show that the left U- or U-introduction rules of INT, which are sound with A^B understood as A A — > B, 
would fail if A c— B was understood a,s kA ^> B or kA ^ B. A naive person familiar with linear logic and 
seeing philosophy- level connections between our recurrence operations and Girard's [4] storage operator !, 
might ask which of the three recurrence operations "corresponds" to !. In the absence of a clear resource 
semantics for linear logic, perhaps such a question would not be quite meaningful though. Closest to our 
present approach is that of [1], where Blass proved soundness for the propositional fragment of INT with 
respect to his semantics, reintroduced 20 years later [2] in the new context of linear logic. 

To appreciate the difference between — -> and o— , let us remember the Kolmogorov complexity problem. 
It can be expressed by \~~\u\-\zK(z, u), where K(z, u) is the predicate 11 z is the size of the smallest (code of a) 
Turing machine that returns u on input 1" . Just like the acceptance problem, the Kolmogorov complexity 
problem has no algorithmic solution but is algorithmically reducible to the halting problem. However, 
such a reduction can be shown to essentially require recurring usage of the resource V~\xV~\y(Halts(x,y) U 
-^Halts(x,y)^ . That is, while the following game is winnable by a machine, it is not so with — > instead of 

3 The term "branching recurrence" and the symbols 6 and o — were established in [9] . The earlier paper [7] uses "branching 
conjunction", ! and =>■ instead. In the present paper, => has a different meaning — that of a separator of the two parts of a 
sequent. 
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r~\xV~\y(Halts(x, y) U ->Halts(x, y)) o- \lu\JzK(z, u). (2) 
Here is T's strategy for (2) in relaxed terms: T waits till _L selects a value to for u in the consequent, 
thus asking T the question "what is the Kolmogorov complexity of to?". After this, starting from i = 1, 
T does the following: it creates a new copy of the (original) antecedent, and makes the two moves in it 
specifying x and y as i and 1, respectively, thus asking the counterquestion "does machine i halt on input 
1?". If _!_ responds by choosing -iHalts(i, 1) ("no"), T increments i by one and repeats the step; otherwise, 
if _L responds by Halts(i, 1) ("yes"), T simulates machine i on input 1 until it halts; if it sees that machine 
i returned to, it makes the move in the consequent specifying z as |z| (here \i\ means the size of i, i.e., 
|i| = log 2 i), thus saying that \i\ is the Kolmogorov complexity of to; otherwise, it increments i by one and 
repeats the step. 

3 Constant games 

Now we are getting down to formal definitions of the concepts informally explained in the previous section. 
Our ultimate concept of games will be defined in the next section in terms of the simpler and more basic 
class of games called constant games. To define this class, we need some technical terms and conventions. 
Let us agree that by a move we mean any finite string over the standard keyboard alphabet. One of the 
non-numeric and non-punctuation symbols of the alphabet, denoted 4, is designated as a special-status 
move, intuitively meaning a move that is always illegal to make. A labeled move (labmove) is a move 
prefixed with T or _L, with its prefix (label) indicating which player has made the move. A run is a (finite 
or infinite) sequence of labeled moves, and a position is a finite run. 

Convention 3.1 We will be exclusively using the letters r, ©,<&, ^, T for runs, p for players, a, /3, 7 for 
moves, and A for labmoves. Runs will be often delimited with "(" and ")", with () thus denoting the empty 
run. The meaning of an expression such as pa, T) must be clear: this is the result of appending to 
position (<£>) the labmove (pa) and then the run (r). -T (not to confuse this -1 with the same-shape game 
operation of negation) will mean the result of simultaneously replacing every label T in every labmove of T 
by _L and vice versa. Another important notational convention is that, for a string/move a, T a means the 
result of removing from T all labmoves except those of the form pa/3, and then deleting the prefix 'a' in the 
remaining moves, i.e. replacing each such pa/3 by p/3. 

The following item is a formal definition of constant games combined with some less formal conventions 
regarding the usage of certain terminology. 

Definition 3.2 A constant game is a pair A = (Lr A ,Wn A ), where: 

1. Lr" 4 is a set of runs not containing (whatever-labeled) move 6, satisfying the condition that a (finite 
or infinite) run is in Lr A iff all of its nonempty finite — not necessarily proper — initial segments are in 
Lr A (notice that this implies () G Lr A ). The elements of Lr A are said to be legal runs of A, and all other 
runs are said to be illegal. We say that a is a legal move for p in a position $ of A iff pa) £ L,r A ; 
otherwise a is illegal. When the last move of the shortest illegal initial segment of T is p-labeled, we say 
that T is a p-illegal run of A. 

2. W/ is a function that sends every run T to one of the players T or _L, satisfying the condition that 
if T is a p-illegal run of A, then Wn A (r) ^ p. When Wn A (r) = p, we say that T is a p-won (or won by 
p) run of A; otherwise T is lost by p. Thus, an illegal run is always lost by the player who has made the 
first illegal move in it. 

Definition 3.3 Let A, B, Ai, A 2 , ... be constant games, and n G {2, 3, . . .}. 

1. ->A is defined by: T G Lr^ iff -^T G hr A ; WrT A (T) = T iff Wn^r) = _L. 

2. Ai n . . . n A n is defined by: T G Lr Ain - nA " iff T = () or T = (±i, O), where i G {1, . . . ,n} and 
9 G Lr Al ; Wn Ain '" n ' 1 "(r> = _L iff T = (±i,Q), where i G {1, . . . , n} and Wn A > (O) = J_. 

3. Ai A ... A A„ is defined by: T e Lr AlA " AA " iff every move of T starts with for one of the 
i G {1, . . . ,n} and, for each such i, ' T l - G Lr A >; whenever T G J jT AiA - aA " , Wn ilA '- AA "(r) = T iff, for each 
ie{l,..,n},Wn A -(r , j=T. 
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4. Ai U . . . U A n and Ai V . . . V A n arc defined exactly as A\ l~l . . . I~l A n and Ai A . . . A A„, respectively, 
only with "T" and "_L" interchanged. And A — > B is defined as V £>. 

5. The infinite n-conjunction A\ l~l A2 l~l . . . is defined exactly as Ai n . . . I~l A n , only with "i G {1, 2, . . .}" 
instead of "i G {1, . . . , n}". Similarly for the infinite versions of U, A, V. 

6. In addition to the earlier-established meaning, the symbols T and _L also denote two special — simplest 
- games, defined by Lr T = Lr^ = {()}, Wn T () = T and Wn x {) = _L. 

An important operation not explicitly mentioned in Section 2 is what is called prefixation. This operation 
takes two arguments: a constant game A and a position $ that must be a legal position of A (otherwise 
the operation is undefined), and returns the game ($)A. Intuitively, ($>)A is the game playing which means 
playing A starting (continuing) from position <I>. That is, {&)A is the game to which A evolves (will be 
"brought down" ) after the moves of <J> have been made. We have already used this intuition when explaining 
the meaning of choice operations in Section 2: we said that after _L makes an initial move i G {1, . . . , n}, 
the game A\ l~l . . . n A n continues as Ai. What this meant was nothing but that {-Li)(Ai l~l . . . n A n ) = Aj. 
Similarly, (Ti)(A\ U . . . U A n ) — Ai. Here is the definition of prefixation: 

Definition 3.4 Let A be a constant game and <3? a legal position of A. The game ($)A is defined by: 
Lr WA = {T I ($, T) G Lr A }; Wn<* )J (f) = W/($, T). 

The operation o is somewhat more complex and its definition relies on certain additional conventions. We 
will be referring to (possibly infinite) strings of Os and Is as bit strings, using the letters w, u as metavariables 
for them. The expression wu, meaningful only when w is finite, will stand for the concatenation of strings 
w and u. We write w ^ u to mean that w is a (not necessarily proper) initial segment of u. The letter e will 
exclusively stand for the empty bit string. 

Convention 3.5 By a tree we mean a nonempty set T of bit strings, called branches of the tree, such 
that, for every w, u, we have: (a) if w G T and u < w, then u G T; (b) wO G T iff wl G T; (c) if w is infinite 
and every finite u with u < w is in T, then w G T. Note that T is finite iff every branch of it is finite. A 
complete branch of T is a branch w such that no bit string u with w ^ u ^ w is in T. Finite branches 
are called nodes, and complete finite branches called leaves. 

Definition 3.6 We define the notion of a prelegal position, together with the function Tree that associates 
a finite tree Tree($) with each prelegal position $, by the following induction: 

1. () is a prelegal position, and TreeQ = {e}. 

2. ($, A) is a prelegal position iff $ is so and one of the following two conditions is satisfied: 

(a) A = ±w: for some leaf w of Tree($). We call this sort of a labmove A replicative. In this case 
Tree($, A) = 7Vee($) U {wO, wl}. 

(b) A is ±.w.a or Tw.a for some node w of Tree($) and move a. We call this sort of a labmove A 
nonreplicative. In this case Tree($,A) = Tree($). 

The terms "replicative" and "nonreplicative" also extend from labmoves to moves. When a run V is infinite, 
it is considered prelegal iff all of its finite initial segments are so. For such a T, the value of Tree(T) is the 
smallest tree such that, for every finite initial segment $ of T, Tree($) C Tree(T). 

Convention 3.7 Let u be a bit string and T any run. Then Y- u will stand for the result of first removing 
from r all labmoves except those that look like pw.a for some bit string w with w ^ u, and then deleting 
this sort of prefixes 'w.' in the remaining labmoves, i.e. replacing each remaining labmove pw.a (where w 
is a bit string) by pa. Example: If u = 101000... and T = (Te.ai, _L:, _Ll.a2, TO. 0:3, _L1:, T10.ct!4}, then 
T^ u = (Tai,_La 2 ,Ta 4 ). 

Definition 3.8 Let A be a constant game. The game bA is defined by: 

1. A position $ is in Lr ij4 iff $ is prelegal and, for every leaf w of Tree($), §>- w g Lr A . 
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2. As long as T 6 Lr 6A , Wn iA (r) = T iff Wn A (r^") = T for every infinite bit string u. 4 
Next, we officially reiterate the earlier-given definition of c— by stipulating that Ao—B —def bA — > B. 

Remark 3.9 Intuitively, a legal run Y of bA can be thought of as a multiset Z of parallel legal runs of A. 
Specifically, Z = {T- u \ u is a complete branch of Tree(T)}, with complete branches of Tree(T) thus acting 
as names for — or "representing" — elements of Z. In order for T to win, every run from Z should be a 
T-won run of A. The runs from Z typically share some common initial segments and, put together, can 
be seen as forming a tree of labmoves, with Xree(r) — that we call the underlying tree- structure of Z - 
in a sense presenting the shape of that tree. The meaning of a replicative move w: — making which is an 
exclusive privilege of _L — is creating in (the evolving) Z two copies of position T- w out of one. And the 
meaning of a nonreplicative move w.a is making move a in all positions T- u of (the evolving) Z with w ^ u. 
This is a brutally brief explanation, of course. The reader may find it very helpful to see Section 13 of [7] 
for detailed explanations and illustrations of the intuitions associated with our A-related formal concepts. 5 

4 Not-necessarily-constant games 

Constant games can be seen as generalized propositions: while propositions in classical logic are just elements 
of {T, _L}, constant games are functions from runs to {T, _L}. As we know, however, propositions only offer 
a very limited expressive power, and classical logic needs to consider the more general concept of predicates, 
with propositions being nothing but special — constant — cases of predicates. The situation in CL is similar. 
Our concept of (simply) game generalizes that of constant game in the same sense as the classical concept 
of predicate generalizes that of proposition. 

Let us fix two infinite sets of expressions: the set {vi,v 2 ,---} of variables and the set {1,2,...} of 
constants. Without loss of generality here we assume that the above collection of constants is exactly the 
universe of discourse — i.e. the set over which the variables range — in all cases that we consider. By a 
valuation we mean a function e that sends each variable a; to a constant e(x). In these terms, a classical 
predicate P can be understood as a function that sends each valuation e to a proposition, i.e. constant 
predicate. Similarly, what we call a game sends valuations to constant games: 

Definition 4.1 A game is a function A from valuations to constant games. We write e[A] (rather than 
A(e)) to denote the constant game returned by A for valuation e. Such a constant game e[A] is said to be 
an instance of A. For readability, we often write Lr^ 4 and WnJ 4 instead of Lr 6 ^ 4 ' and Wn 6 ^ 4 ' . 

Just as this is the case with propositions versus predicates, constant games in the sense of Definition 
3.2 will be thought of as special, constant cases of games in the sense of Definition 4.1. In particular, each 
constant game A' is the game A such that, for every valuation e, e[A] = A' . From now on we will no longer 
distinguish between such A and A' , so that, if A is a constant game, it is its own instance, with A = e[A] 
for every e. 

We say that a game A depends on a variable x iff there are two valuations ei,e2 that agree on all 
variables except x such that ei[A] ^ C2[A]. Constant games thus do not depend on any variables. 

Just as the Boolean operations straightforwardly extend from propositions to all predicates, our opera- 
tions -i, A, V, — >, n, U, o, o— extend from constant games to all games. This is done by simply stipulating 
that e[. . .] commutes with all of those operations: ->A is the game such that, for every e, e[^^4] — -<e[A]; 
A n B is the game such that, for every e, e[A n B] = e[A] n e[B]; etc. 

To generalize the standard operation of substitution of variables to games, let us agree that by a term we 
mean either a variable or a constant; the domain of each valuation e is extended to all terms by stipulating 
that, for any constant c, e(c) = c. 

4 For reasons pointed out on page 39 of [7], the phrase "for every infinite bit string u" here can be equivalently replaced by 
"for every complete branch u of 7Vee(r}". Similarly, in clause 1, "every leaf w of Tree{<I > )" can be replaced by "every infinite 
bit string ui" . 

5 A few potentially misleading typos have been found in Section 13 (and beyond) of [7]. The current erratum note is 
maintained at http://www.csc.villanova.edu/~japaridz/CL/erratum.pdf 
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Definition 4.2 Let A be a game, x\, . . . ,x n pairwise distinct variables, and t±, . . . , t n any (not necessarily 
distinct) terms. The result of substituting x\,...,x n by t\, . . . ,t n in A, denoted A(x\/ti, . . . , x n /t n ), is 
defined by stipulating that, for every valuation e, e[A(xi/t\, . . . ,x n /t n )] = e'[A], where e' is the valuation 
for which we have e'(xi) — e(t\), . . . , e'(x n ) — e(t n ) and, for every variable y {x\, . . . , x n }, e'(y) — e(y). 

Intuitively A(xi/ti, . . . , x n /t n ) is A with x\, . . . , x n remapped to t\, . . . , t n , respectively. Following the 
standard readability-improving practice established in the literature for predicates, we will often fix a tuple 
(xi, . . . , x n ) of pairwise distinct variables for a game A and write A as A(x\, . . . ,x n ). It should be noted 
that when doing so, by no means do we imply that of all of (or only) the variables on which 

A depends. Representing A in the form A(x±, . . . , x n ) sets a context in which we can write A(t\, . . . , t n ) to 
mean the same as the more clumsy expression A(x\/t\, . . . , x n /t n ). 

In the above terms, we now officially reiterate the earlier-given definitions of the two main quantifier-style 
operations l~l and U: V~\xA{x) = def A(l) n A(2) n A(3) n ... and UxA{x) = def A(l) U A{2) U A(3) U . . .. 

5 Computational problems and their algorithmic solvability 

Our games are obviously general enough to model anything that one would call a (two-agent, two-outcome) 
interactive problem. However, they are a bit too general. There are games where the chances of a player 
to succeed essentially depend on the relative speed at which its adversary acts. A simple example would be 
a game where both players have a legal move in the initial position, and which is won by the player who 
moves first. CL does not want to consider this sort of games meaningful computational problems. Definition 
4.2 of [7] imposes a simple condition on games and calls games satisfying that condition static. We are 
not reproducing that definition here as it is not relevant for our purposes. It should be however mentioned 
that, according to one of the theses on which the philosophy of CL relies, the concept of static games is an 
adequate formal counterpart of our intuitive concept of "pure" , speed-independent interactive computational 
problems. All meaningful and reasonable examples of games — including all elementary games — are static, 
and the class of static games is closed under all of the game operations that we have seen (Theorem 14. 1 
of [7]). Let us agree that from now on the term "computational problem", or simply "problem", is a 
synonym of "static game" . 

Now it is time to explain what computability of such problems means. The definitions given in this section 
are semiformal. The omitted technical details are rather standard or irrelevant and can be easily restored 
by anyone familiar with Turing machines. If necessary, the corresponding detailed definitions can be found 
in Part II of [7]. 

[7] defines two models of interactive computation, called the hard-play machine (HPM) and the easy- 
play machine (EPM). Both are sorts of Turing machines with the capability of making moves, and have 
three tapes: the ordinary read/write work tape, and the read-only valuation and run tapes. The valuation 
tape contains a full description of some valuation e (say, by listing the values of e at vi,v 2 , ■ ■ .), and its 
content remains fixed throughout the work of the machine. As for the run tape, it serves as a dynamic 
input, at any time spelling the current position, i.e. the sequence of the (lab)moves made by the two players 
so far. So, every time one of the players makes a move, that move — with the corresponding label - 
is automatically appended to the content of this tape. In the HPM model, there is no restriction on the 
frequency of environment's moves. In the EPM model, on the other hand, the machine has full control over 
the speed of its adversary: the environment can (but is not obligated to) make a (one single) move only 
when the machine explicitly allows it to do so — the event that we call granting permission. The only 
"fairness" requirement that such a machine is expected to satisfy is that it should grant permission every 
once in a while; how long that "while" lasts, however, is totally up to the machine. The HPM and EPM 
models seem to be two extremes, yet, according to Theorem 17.2 of [7], they yield the same class of winnablc 
static games. The present paper will only deal with the EPM model, so let us take a little closer look at it. 

Let M. be an EPM. A configuration of M. is defined in the standard way: this is a full description of the 
("current") state of the machine, the locations of its three scanning heads and the contents of its tapes, with 
the exception that, in order to make finite descriptions of configurations possible, we do not formally include 
a description of the unchanging (and possibly essentially infinite) content of the valuation tape as a part of 
configuration, but rather account for it in our definition of computation branch as will be seen below. The 
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initial configuration is the configuration where M. is in its start state and the work and run tapes are empty. 
A configuration C is said to be an e-successor of configuration C in A4 if, when valuation e is spelled on the 
valuation tape, C can legally follow C in the standard — standard for multitape Turing machines — sense, 
based on the transition function (which we assume to be deterministic) of the machine and accounting for the 
possibility of nondeterministic updates — depending on what move _L makes or whether it makes a move at 
all — of the content of the run tape when M grants permission. Technically granting permission happens by 
entering one of the specially designated states called "permission states" . An e-computation branch of M. 
is a sequence of configurations of M. where the first configuration is the initial configuration and every other 
configuration is an e-successor of the previous one. Thus, the set of all e-computation branches captures all 
possible scenarios (on valuation e) corresponding to different behaviors by _L. Such a branch is said to be 
fair iff permission is granted infinitely many times in it. Each e-computation branch B of M. incrementally 
spells — in the obvious sense — a run T on the run tape, which we call the run spelled by B. Then, for 
a game A we write M. \= e A to mean that, whenever T is the run spelled by some e-computation branch B 
of M. and T is not ^-illegal, then branch B is fair and Wnf(r) = T. We write M \= A and say that M 
computes (solves, wins) A iff M. \= e A for every valuation e. Finally, we write \= A and say that A is 
computable iff there is an EPM M with M \= A. 

6 The language of INT and the extended language 

As mentioned, the language of intuitionistic logic can be seen as a fragment of that of CL. The main building 
blocks of the language of INT arc infinitely many problem letters, or letters for short, for which we use 
P, Q,R,S,... as metavariables. They are what in classical logic are called 'predicate letters', and what CL 
calls 'general letters'. With each letter is associated a nonnegative integer called its arity. $ is one of the 
letters, with arity 0. We refer to it as the logical letter, and call all other letters nonlogical. The language 
also contains infinitely many variables and constants — exactly the ones fixed in Section 4. "Term" also has 
the same meaning as before. An atom is P{t\, . . . , t n ), where P is an n-ary letter and the ij are terms. Such 
an atom is said to be P '-based. If here each term ti is a constant, we say that P(t\, . . . ,t n ) is grounded. 
A P-based atom is n-ary, logical, nonlogical etc. iff P is so. When P is 0-ary, we write P instead of P(). 
INT- Formulas are the elements of the smallest class of expressions such that all atoms are INT-formulas 
and, if F, Fi, . . . , F n (n > 2) arc INT- formulas and x is a variable, then the following expressions are also 
INT-formulas: (F 1 )o-(F 2 ), (Fi) n . . . n (F„), (Fi) U . . . U (F„), l~la;(F), Lix(F). Officially there is no 
negation in the language of INT. Rather, the intuitionistic negation of F is understood as Ft^$. In this 
paper we also employ a more expressive formalism that we call the extended language. The latter has 
the additional connectives T, _L, ->, A, V, — o on top of those of the language of INT, extending the above 
formation rules by adding the clause that T, _L, -<F, (Fi) A ... A (F„), (Fx) V ... V (F„), (Fi) (F 2 ) and 
o(F) are formulas as long as F, Fi, . . . , F n are so. T and _L count as logical atoms. Henceforth by (simply) 
"formula" , unless otherwise specified, we mean a formula of the extended language. Parentheses will often 
be omitted in formulas when this causes no ambiguity. With IH and U being quantifiers, the definitions of 
free and bound occurrences of variables are standard. 

In concordance with a similar notational convention for games on which we agreed in Section 4, sometimes 
a formula F will be represented as F(x\, . . . , x n ), where the Xi are pairwise distinct variables. When doing 
so, we do not necessarily mean that each such Xi has a free occurrence in F, or that every variable occurring 
free in F is among x\, . . . , x n . In the context set by the above representation, F(t\, . . . ,t n ) will mean the 
result of replacing, in F, each free occurrence of each Xi (1 < i < n) by term ti. In case each t, is a variable 
yi, it may be not clear whether F{x\, . . . , x n ) or F(yi, . . . , y n ) was originally meant to represent F in a given 
context. Our disambiguating convention is that the context is set by the expression that was used earlier. 
That is, when we first mention F(x\, . . . , x n ) and only after that use the expression F(yi, . . . , y n ), the latter 
should be understood as the result of replacing variables in the former rather than vice versa. 

Let x be a variable, t a term and F(x) a formula, t is said to be free for x in F(x) iff none of the 
free occurrences of x in F(x) is in the scope of \~~\t or Lit. Of course, when t is a constant, this condition is 
always satisfied. 

An interpretation is a function * that sends each n-ary letter P to a static game *P = P*{x\, . . . , x n ), 
where the Xi are pairwise distinct variables. This function induces a unique mapping that sends each formula 
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F to a game F* (in which case we say that * interprets F as F* and that F* is the interpretation of F 
under *) by stipulating that: 

1. Where P is an n-ary letter with *P = P*(xi, . . . ,x n ) and t\,...,t n are terms, (P(h, . . . , t n ))* = 
P*(h, ■ ■ ■ , t n ). 

2. * commutes with all operators: T* = T, (Fc^G)* = F* o—G*, (F\ A ... A F n )* = Fj* A . . . A F*, 
(HxF)* = \lx(F*), etc. 

When a given formula is represented as F(x\, . . . , x n ), we will typically write F*(x\, . . . , x n ) instead of 
(F(xi, . . . ,x n ))*. 

For a formula F, we say that an interpretation * is admissible for F, or simply F-admissible, iff the 
following conditions are satisfied: 

1. For every n-ary letter P occurring in F, where *P = P*(xi, . . . , x n ), the game P*(x\, . . . , x n ) does not 
depend on any variables that are not among x\,. . . ,x n but occur (whether free or bound) in F. 

2. $* = B l~l F* l~l F£ l~l . . ., where B is an arbitrary problem and Fi, F 2 , . . . is the lexicographic list of all 
grounded nonlogical atoms of the language. 

Speaking philosophically, an admissible interpretation * interprets $ as a "strongest problem" : the inter- 
pretation of every grounded atom and hence — according to Lemma 10.5 — of every formula is reducible to 
$*, and reducible in a certain uniform, interpretation-independent way. Viewing $* as a resource, it can be 
seen as a universal resource that allows its owner to solve any problem. Our choice of the dollar notation here 
is no accident: money is an illustrative example of an all-powerful resource in the world where everything 
can be bought. "Strongest", "universal" or "all-powerful" do not necessarily mean "impossible". So, the 
intuitionistic negation F o— $ of F here does not have the traditional "F* is absurd" meaning. Rather, it 
means that F* (too) is of universal strength. Turing completeness, NP-completeness and similar concepts 
are good examples of "being of universal strength" . $* is what [7] calls a standard universal problem of 
the universe (F*,F 2 *, . . .). Briefly, a universal problem of a universe (sequence) (A\, A 2 , . . .) of problems 
is a problem U such that \= U — > A\ n A 2 l~l . . . and hence \= U o— A\ l~l A 2 n . . ., intuitively meaning a 
problem to which each Ai is reducible. For every B, the problem U = B\l Ai \lA 2 ■ ■ ■ satisfies this condition, 
and universal problems of this particular form are called standard. Every universal problem U of a given 
universe can be shown to be equivalent to a standard universal problem U' of the same universe, in the sense 
that \= U o—U' and |= U' o—U. And all of the operators of INT can be shown to preserve equivalence. 
Hence, restricting universal problems to standard ones docs not result in any loss of generality: a universal 
problem can always be safely assumed to be standard. See section 23 of [7] for an extended discussion of 
the philosophy and intuitions associated with universal problems. Here we only note that interpreting $ as 
a universal problem rather than (as one might expect) as _L yields more generality, for _L is nothing but a 
special, extreme case of a universal problem. Our soundness theorem for INT, of course, continues to hold 
with _L instead of$. 

Let F be a formula. We write f^F and say that F is valid iff |= F* for every F-admissible interpretation 
*. For an EPM £, we write £HrF and say that £ is a uniform solution for F iff £ \= F* for every F- 
admissible interpretation *. Finally, we write frF and say that F is uniformly valid iff there is a uniform 
solution for F. Note that uniform validity automatically implies validity but not vice versa. Yet, these two 
concepts have been conjectured to be extensionally equivalent (Conjecture 26.2 of [7]). 

7 The Gentzen-style axiomatization of INT 

A sequent is a pair G_=> where K is an INT-formula and G is a (possibly empty) finite sequence of INT- 
formulas. In what follows, E, F, K will be used as metavariables for formulas, and G, H_ as metavariables for 
sequences of formulas. We think of sequents as formulas, identifying => K with K, F => K with oF — > K (i.e. 
F <^K), and E\, . . . , E n => K (n > 2) with iFi A ... A oF„ — > K. 6 This allows us to automatically extend 

6 In order to fully remain within the language of INT, we could understand E\,...,E n K as 

Ei o— (E2 o— . . . o— (E n o— K) . . .), which can be shown to be equivalent to our present understanding. We, however, prefer 
to read E\, . . . , E„ => K as 6E1 A ... A bE„ — > K as it seems more convenient to work with. 
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the concepts such as validity, uniform validity, etc. from formulas to sequents. A formula if is considered 
provable in INT iff the sequent => if is so. 

Deductively, logic INT is given by the following 15 rules. This axiomatization is known (or can be easily 
shown) to be equivalent to other "standard" formulations, including Hilbert-style axiomatizations for INT 
and/or versions where a primitive symbol for negation is present while $ is absent, or where l~l and U are 
strictly binary, or where variables are the only terms of the language. 7 

Below G, H_ are any (possibly empty) sequences of INT-formulas; n > 2; 1 < i < n; x is any variable; E, 
F, if, Fi, . . . , F n , ifi, . . . , K n , F(x), K(x) are any INT-formulas; y is any variable not occurring (whether 
free or bound) in the conclusion of the rule; in Left IH (resp. Right U), t is any term free for x in F(x) 
(resp. in K(x)). V\ — ^G means "from premise(s) V conclude C" . When there are multiple premises in V, 
they are separated with a semicolon. 



Identity 




\— 


-> if => if 


Domination 




I— 


-> $ => if 


Exchange 


G,E,F,H_ 


=> if H 


G_,F,E,H^ if 


Weakening 


G 


=>K H 


-> G, F => if 


Contraction 


G,F,F 


if H 


-> G,F^K 


Right o— 


G, F 


=>K H 


-> G^Fo-K 


Left o— 


G, F => Ki; H-- 


*K 2 H 


-> G,H,K 2 <^F ifi 


Right n 


G => ifi; ...; G = 


>K n H 


-» G if i n . . . n if„ 


Left n 


G, Fi 


=>K H 


G, Fi n . . . n F„ if 


Right U 


G 


=>K> H 


-> G if i u . . . U if „ 


Left U 


G,F\=> K; G,F n 


=>K H 


-» G, Fi u . . . U F„ if 


Right I - ! 


G => 


K(y) H 


-> G^rixif(x) 


Left l~l 


G,F(t) 


=^if H 


-> g, risf 1 ^) if 


Right U 


G => 


if(t) K 


G^Uxif(x) 


Left U 


G, F(y) 


if H 


-> G, UxF(a;) if 



Theorem 7.1 (Soundness:) i/INT h 5, thenVrS (any sequent S). Furthermore, (uniform-constructive 

soundness:) there is an effective procedure that takes any INT-proof of any sequent S and constructs a 
uniform solution for S. 

Proof. See Section 12. □ 



8 CL2-derived validity lemmas 

In our proof of Theorem 7.1 we will need a number of lemmas concerning uniform validity of certain formulas. 
Some such validity proofs will be given directly in Section 10. But some proofs come "for free", based on 
the soundness theorem for logic CL2 proven in [11]. CL2 is a propositional logic whose logical atoms are 
T and _L (but not $) and whose connectives are -i, A, V, — >, U. It has two sorts of nonlogical atoms, called 
elementary and general. General atoms are nothing but 0-ary atoms of our extended language; elementary 
atoms, however, are something not present in the extended language. We refer to the formulas of the 
language of CL2 as CL2-formulas. In this paper, the CL2-formulas that do not contain elementary atoms 

7 That we allow constants is only for technical convenience. This does not really yield a stronger language, as constants 
behave like free variables and can be thought of as such. 



11 



— including T and _L that count as such — are said to be general-base. Thus, every general-base formula 
is a formula of our extended language, and its validity or uniform validity means the same as in Section 6. 8 
Understanding F — > G as an abbreviation for ->F V G, a positive occurrence in a CL2-formula is an 
occurrence that is in the scope of an even number of occurrences of otherwise the occurrence is negative. 
A surface occurrence is an occurrence that is not in the scope of l~l and/or U. The elementarization of 
a CL2-formula F is the result of replacing in F every surface occurrence of every subformula of the form 
G\ l~l . . . I~l G n (resp. G\ U . . . U G n ) by T (resp. _L), and every positive (resp. negative) surface occurrence 
of every general atom by _L (resp. T). A CL2-formula F is said to be stable iff its elementarization is a 
tautology of classical logic. With these conventions, CL2 is axiomatized by the following three rules: 

(a) H\ — >F, where F is stable and H is the smallest set of formulas such that, whenever F has a positive 
(resp. negative) surface occurrence of a subformula Ci I I ... I I G n (resp. G\ U . . . U G rl ), for each 
i G {1, . . . ,n}, H contains the result of replacing that occurrence in F by d. 

(b) H\ — >F, where H is the result of replacing inFa negative (resp. positive) surface occurrence of a 
subformula Gi l~l . . . I~l G n (resp. Gi U . . . U G n ) by d for some i G {1, . . . , n}. 

(c) H\ — ^F, where H is the result of replacing in F two — one positive and one negative — surface 
occurrences of some general atom by a nonlogical elementary atom that does not occur in F. 

In this section p,q,r, s,t,u,w . . . (possibly with indices) will exlusively stand for nonlogical elementary 
atoms, and P,Q, R, S,T,U,W (possibly with indices) stand for general atoms. All of these atoms are 
implicitely assumed to be pairwise distinct in each context. 

Convention 8.1 In Section 7 we started using the notation G for sequences of formulas. Later we agreed 
to identify sequences of formulas with A-conjunctions of those formulas. So, from now on, an underlined 
expression such as G will mean an arbitrary formula G\ A . . . A G n for some n > 0. Such an expression will 
always occur in a bigger context such as G A F or G — > F; our convention is that, when n = 0, G A F and 
G^F simply mean F. 

As we agreed that p,q, . . . stand for elementary atoms and P,Q, . . . for general atoms, p,q, . . . will corre- 
spondingly mean A-conjunctions of elementary atoms, and P,Q, ■ ■ ■ mean A-conjunctions of general atoms. 

We will also be underlining complex expressions such as F — > G, \~\xF(x) or bF. F G should be 
understood as (Fi — ► Gi) A ... A (F n — > G„), V~\xF{x) as \~\xFi(x) A ... A \~\xF n (x) (note that only the Ft 
vary but not x), iF as oFiA. . . F„, iiF as i(iFiA. . .AoF„), iF -> FAG as iFiA. . . iF„ -> Fi A. . .AF„AG, 
etc. 

The axiomatization of CL2 is rather unusual, but it is easy to get a syntactic feel of it once we do a 
couple of exercises. 

Example 8.2 The following is a CL2-proof of (F -> Q) A (Q -> T) -> (F -> T): 

1. (p -> q) A (q -> t) -> (p -> t) (from {} by Rule (a)). 

2. (F -» q) A (q -» i) -» (F -» i) (from 1 by Rule (c)). 

3. (F -» Q) A (Q -> t) (P -> t) (from 2 by Rule (c)). 

4. (F -> Q) A (Q T) (F T) (from 3 by Rule (c)). 

Example 8.3 Let n > 2, and let to be the length (number of conjuncts) of both R and r. 

a) For i G {1, . . . , n}, the formula of Lemma 8 . 5 ( j ) is provable in CL2. It follows from (R — > 5^) — > 
(F — > S*i) by Rule (b); the latter follows from (R —> Sj) — > (F — > Sj) by Rule (c); the latter, in turn, can 
be derived from (r — ► Sj) — > (r — > Si) applying Rule (c) to times. Finally, (r — > Sj) — > (r — > Sj) is its own 
elementarization and is a classical tautology, so it follows from the empty set of premises by Rule (a). 

b) The formula of Lemma 8.5(h) is also provable in CL2. It is derivable by Rule (a) from the set of n 
premises, easch premise being (R — > Si) A . . . A (R — ► S n ) — ► {R — > 5*i) for some i G {1, . . . , n}. The latter is 
derivable by Rule (c) from (R —> S\) A . . . A (R — > Sj) A . . . A (F — > 5„) — > (F — > Sj). The latter, in turn, can 
be derived from (R — ► Si) A . . . A (r — ► Sj) A . . . A (R — ► 5„) — > (r — > Sj) applying Rule (c) to times. Finally, 
the latter follows from the empty set of premises by Rule (a) . 

8 Thesc concepts extend to the full language of CL2 as well, with interpretations required to send elementary atoms to 
elementary games (i.e. predicates in the classical sense, understood in CL as games that have no noncmty legal runs). 
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Obviously CL2 is decidablc. This logic has been proven sound and complete in [11]. We only need the 
soundness part of that theorem restricted to general-base formulas. It sounds as follows: 

Lemma 8.4 Any general-base CL2-provable formula is valid. Furthermore, there is an effective procedure 
that takes any CL2-proof of any such formula F and constructs a uniform solution for F. 

A substitution is a function / that sends every general atom P of the language of CL2 to a formula f(P) 
of the extended language. This mapping extends to all general-base CL2-formulas by stipulating that / 
commutes with all operators: /(Gi G 2 ) = /(Gi) -> /(G 2 ), /(Gi n . . . n G k ) = /(Gi) n . . . n f(G k ), etc. 
We say that a formula G is a substitutional instance of a general-base CL2-formula F iff G = f(F) for 
some substitution /. Thus, "G is a substitutional instance of F" means that G has the same form as F. 

In the following lemma, we assume n > 2 (clauses (h) , (i) ,(.])), and 1 < i < n (clause (j)). Notice that, for 
the exception of clause (g), the expressions given below are schemata of formulas rather than formulas, for 
the lengths of their underlined expressions — as well as i and n — may vary. 

Lemma 8.5 All substitutional instances of all formulas given by the following schemata are uniformly valid. 
Furthermore, there is an effective procedure that takes any particular formula matching a given scheme and 
constructs an EPM that is a uniform solution for all substitutional instances of that formula. 

a) (RAPAQAS^T)^(RAQAPAS^T); 

b) (E^T)^ {RAP ^T); 

c) (fl-> S) -> (W A R A U -> W A S A U); 

d) (RAP^Q) -» (P^Q)); 

e) (P^(Q^ T)) A (R -> Q) - (P - (R -> T)); 

f) (P -» (M Q)) A (S A Q -► T) -» (S AR A P -» T); 

g) (P^Q)A(Q^T)^(P^ T); 

h) (R -» Si) A . . . A (R -f S„) -f (R Sx n . . . n S n ); 

i) {R A Si -► T) A . . . A (R A S n T) ^ ((R A (Si U . . . U S n ) T); 
j; (R^S i )^(R^S 1 u...uS n ). 

Proof. In order to prove this lemma, it would be sufficient to show that all formulas given by the above 
schemata are provable in CL2. Indeed, if we succeed in doing so, then an effective procedure whose existence 
is claimed in the lemma could be designed to work as follows: First, the procedure finds a CL2-proof of a 
given formula F. Then, based on that proof and using the procedure whose existence is stated in Lemma 
8.4, it finds a uniform solution £ for that formula. It is not hard to see that the same £ will automatically 
be a uniform solution for every substitutional instance of F as well. 

The CL2-provability of the formulas given by clauses (g), (h) and (j) has been verified in Examples 8.2 
and 8.3. A similar verification for the other clauses is left as an easy syntactic exercise for the reader. □ 



9 Closure lemmas 

In this section we let n range over natural numbers (including 0), x over any variables, F,E,G (possibly 
with subscripts) over any formulas, and £, C, V (possibly with subscripts) over any EPMs. Unless otherwise 
specified, these metavariables are assumed to be universally quantified in a context. The expression {EPMs} 
stands for the set of all EPMs. 

Lemma 9.1 IfUrF, then VhbF. Furthermore, there is an effective function h : {EPMs} — ► {EPMs} such 
that, for any £ and F, if £DrF, then h(£)^roF. 

Proof. According to Proposition 21.2 of [7], there is an effective function h : {EPMs} — > {EPMs} 
such that, for any EPM £ and any static game A, if £ \= A, then h(£) \= oA. We now claim that if £ BKF, 
then h^^oF. Indeed, assume St-F. Consider any oF- admissible interpretation *. Of course, the same 
interpretation is also F-admissiblc. Hence, £HrF implies £ \= F* . But then, by the known behavior of h, we 
have h{£) \= oF*. Since * was arbitrary, we conclude that h(£)i~oF. □ 
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Lemma 9.2 If i-F, then Vh\~\xF. Furthermore, there is an effective function h : {EPMs} — ► {EPMs} 
such that, for any £, x and F, if SVhF, then h(S)<Hr\~\xF . 

Proof. Similar to the previous lemma, only based on Proposition 21.1 of [7] instead of 21.2. □ 

Lemma 9.3 If WrF and i~F — > E, then i~E. Furthermore, there is an effective function h : {EPMs} x 
{EPMs} — ► {EPMs} such that, for any S, C, F and E, if Sir F and OrF -> E, then h(S,C)VhE. 

Proof. According to Proposition 21.3 of [7], there is an effective function g that takes any HPM TL and 
EPM S and returns an EPM C such that, for any static games A,B and any valuation e, if 7i \= e A and 
£ \= e A — > B, then C \= e B. Theorem 17.2 of [7], which establishes equivalence between EPMs and HPMs 
in a constructive sense, allows us to assume that H is an EPM rather than HPM here. More precisely, we 
can routinely convert g into an (again effective) function h : {EPMs} x {EPMs} — > {EPMs} such that, for 
any static games A,B, valuation e and EPMs £ and C, 

if£\= e A and C\= e A^B, then h(£, C) \= e B. (3) 

We claim that the above function h behaves as our lemma states. Assume £t~F and CUrF — > E, and 
consider an arbitrary valuation e and an arbitrary inadmissible interpretation *. Our goal is to show that 
h(£,C) \= e E* , which obviously means the same as 

h(S,C)\= e e[E*}. (4) 

We define the new interpretation t by stipulating that, for every n-ary letter P with P* = P*(xi, . . . , x n ), Ft 
is the game P'(xi, . . . , x n ) such that, for any tuple ci, . . . , c n of constants, P' (ci, . . . , c n ) = e[P*(ci, . . . , c„)}. 
Unlike P*(xi, . . . , x n ) that may depend on some "hidden" variables (those that are not among x\, . . . , x n ), 
obviously pt(xi, . . . , x n ) does not depend on any variables other that x\, . . . , x n . This makes ^ admissible 
for any formula, including F and F — > E. Then our assumptions £t~F and CUrF —> E imply £ \= e F^ and 
C h e Ft -> Ft. Consequently, by (3), h(£,C) \= e E\ i.e. h(£,C) \= e e[E% Now, with some thought, we 
can see that e[E^\ = e[E*\. Hence (4) is true. □ 

Lemma 9.4 (Modus ponens) IflrFi, HrF n and HrFi A ... A F n — > E, thenlrE. Furthermore, there is 
an effective function h : {EPMs} n+1 — > {EPMs} such that, for any EPMs £\, . . . , £ n , C and any formulas 
F u ...,F n ,E, if£ 1 \hF 1 , £JrF n and C^lrF 1 A . . . A F n — > E, then h(£ u . . . , £„, C)HrE. Such a function, 
in turn, can be effectively constructed for each particular n. 

Proof. In case n = 0, h is simply the identity function h(C) — C. In case n = 1, h is the function 
whose existence is stated in Lemma 9.3. Below we will construct h for case n = 2. It should be clear how to 
generalize that construction to any greater n. 

Assume £i»KFi, £ 2 ^rF 2 and OrF 1 AF 2 -> E. By Lemma 8.5(d), {F 1 AF 2 — > F) — > (F 1 (F 2 E)) has 
a uniform solution. Lemma 9.3 allows us to combine that solution with C and find a uniform solution V\ for 
Fi — ► (F 2 — ► E). Now applying Lemma 9.3 to S\ and T>x, we find a uniform solution V 2 for F 2 — > E. Finally, 
applying the same lemma to £ 2 and T> 2 , we find a uniform solution V for E. Note that V does not depend 
on Fi,F 2 ,E, and that we constructed T> in an effective way from the arbitrary Si, S 2 and C. Formalizing 
this construction yields function h whose existence is claimed by the lemma. □ 

Lemma 9.5 (Transitivity) If i-F — > E and i~E — > G, then i-F — > G. Furthermore, there is an effective 
function h : {EPMs} x {EPMs} — ► {EPMs} such that, for any Si, S 2 , F, E and G, if E-JrF F and 
S 2 VhE -» G, tften ft^i,^)!"^ -» G. 

Proof. Assume £i«FF F and f 2 »KF G. By Lemma 8.5(g), we also have Or(F ->£)A(£-»G)-> 
(F — > G) for some (fixed) C. Lemma 9.4 allows us to combine the three uniform solutions and construct a 
uniform solution V for F — > G. □ 
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10 More validity lemmas 



As pointed out in Remark 16.4 of [7], when trying to show that a given EPM wins a given game, it is always 
safe to assume that the runs that the machine generates are never _L-illegal, i.e. that the environment never 
makes an illegal move, for if it does, the machine automatically wins. This assumption, that we call the 
clean environment assumption, will always be implicitly present in our winnability proofs. 

We will often employ a uniform solution for P — > P called the copy-cat strategy (CCS) . This strategy, 
that we already saw in Section 2, consists in mimicking, in the antecedent, the moves made by the environment 
in the consequent, and vice versa. More formally, the algorithm that CCS follows is an infinite loop, on every 
iteration of which CCS keeps granting permission until the environment makes a move I. a (resp. 2. a), to 
which the machine responds by the move 2. a (resp. l.a). As shown in the proof of Proposition 22.1 of [7], 
this strategy guarantees success in every game of the form A V ->A and hence A — > A. An important detail 
is that CCS never looks at the past history of the game, i.e. the movement of its scanning head on the run 
tape is exclusively left-to-right. This guarantees that, even if the original game was something else and it 
only evolved to A — > A later as a result of making a series of moves, switching to the CCS after the game 
has been brought down to A — > A guarantees success no matter what happened in the past. 

Thgroughout this section, F, G, E, K (possibly with indices and attached tuples of variables) range 
over formulas, x and y over variables, t over terms, n over nonnegative integers, w over bit strings, and a, 7 
over moves. These (meta)variables are assumed to be universally quantified in a context unless otherwise 
specified. In accordance with our earlier convention, e means the empty string, so that, say, 'I.e. a' is the 
same as T..a'. 

Lemma 10.1 UrbF — > F. Furthermore, there is an EPM £ such that, for any F, SHrbF — ► F. 

Proof. The idea of a uniform solution £ for bF — > F is very simple: just act as CCS, never making any 
rcplicative moves in the antecedent and pretending that the latter is F rather than (the stronger) bF. The 
following formal description of the interactive algorithm that £ follows is virtually the same as that of CCS, 
with the only difference that the move prefix '1.' is replaced by 'I.e.' everywhere. 

Procedure LOOP: Keep granting permission until the environment makes a move I.e. a or 2. a; in the 
former case make the move 2.a, and in the latter case make the move I.e. a; then repeat LOOP. 

Fix an arbitrary valuation e, interpretation * and e-computation branch B of £ . Let O be the run spelled 
by B. From the description of LOOP it is clear that permission will be granted infinitely many times in 
B, so this branch is fair. Hence, in order to show that £ wins the game, it would suffice to show that 
Wn^^O) =T. 

Let Qi denote the initial segment of O consisting of the (lab)movcs made by the players by the beginning 
of the ith iteration of LOOP in B (if such an iteration exists). By induction on i, based on the clean 
environment assumption and applying a routine analysis of the the behavior of LOOP and the definitions of 
the relevant game operations, one can easily find that 

a) Qi e Lrf *^ F *; 

b) ej- e - = -of- ; 

c) All of the moves in Qj- have the prefix 'e. '. 

If LOOP is iterated infinitely many times, then the above obviously extends from 0j to O, because 
every initial segment of 6 is an initial segment of some Oj. And if LOOP is iterated only a finite number 
to of times, then O = O m . This is so because the environment cannot make a move I.e. a or 2. a during 
the 771th iteration (otherwise there would be a next iteration), and any other move would violate the clean 
environment assumption; and, as long as the environment does not move during a given iteration, neither 
does the machine. Thus, no matter whether LOOP is iterated a finite or infinite number of times, we have: 

a) eeLrf %r ; 

b) e l e - = -O 2 - ; (5) 

c) All of the moves in have the prefix 'e. '. 
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Since O G Li"g F ^ F , in order to show that Wn* F ^ F (0) — T, by the definition of — it would suffice to 
show that cither Wnf * (0 2 -) =Tor Wn; 4r (0 1 -) = T. So, assume Wnf * (0 2 -) ^ T, i.e. Wnf * (O 2 -) = _L, 
i.e. Wn; F *(-.6 2 -) = T. Then, by clause (b) of (5), Wnf* (9 Lf ') = T, i.e. Wnf (-.O 1 - 6 -) = _L, i.e. 
Wnf ((-iB 1 ) 6 } = _L. Pick any infinite bit string w. In view of clause (c) of (5), we obviously have (-i© 1- ) 6- — 
(-,01-)^. Hence Wnf * ((^O 1 -)- 1 "} = -1. But this, by the definition of i, implies Wnf (n9 L ) = _L. The 
latter, in turn, can be rewritten as the desired Wn^ (0 1 ) = T. 

Thus, we have shown that £ wins oF* — > F*. Since * was arbitrary and the work of £ did not depend 
on it, we conclude that £l-iF — ► F. □ 

In the subsequent constructions found in this section, * will always mean an arbitrary but fixed inter- 
pretation admissible for the formula whose uniform validity we are trying to prove. Next, e will always 
mean an arbitrary but fixed valuation — specifically, the valuation spelled on the valuation tape of the 
machine under question. For readability, we will usually omit the e parameter when it is irrelevant. Also, 
having already seen one example, in the remaining uniform validity proofs we will typically limit ourselves 
to just constructing interactive algorithms, leaving the (usually routine) verification of their correctness to 
the reader. An exception will be the proof of Lemma 10.12 where, due to the special complexity of the case, 
correctness verification will be done even more rigorously than we did this in the proof of Lemma 10.1. 

Lemma 10.2 KH (-F — > G) — > (iF — > iG). Moreover, there is an EPM £ such that, for every F and G, 
£H(F — > G) — > (IF -» iG). 

Proof. A relaxed description of a uniform solution £ for i(F — > G) — > (iF — > iG) is as follows. In 
i(F* — > G*) and iF* the machine is making exactly the same replicative moves (moves of the form w.) as 
the environment is making in AG*. This ensures that the tree-structures of the three i-components of the 
game are identical, and now all the machine needs for a success is to win the game (F* — > G*) — > (F* — > G*) 
within each branch of those trees. This can be easily achieved by applying copy-cat methods to the two 
occurrences of F and the two occurrences of G. 

In precise terms, the strategy that £ follows is described by the following interactive algorithm. 

Procedure LOOP: Keep granting permission until the adversary makes a move 7. Then: 
If 7 — 2.2.W., then make the moves l.w: and 2.I.W., and repeat LOOP; 

If 7 = 2fl.vj.OL (resp. 7 = l.w. 2. en), then make the move l.w. 2. a (resp. 2.2.w.a), and repeat LOOP; 
If 7 = 2. l.w. a (resp. 7 = l.w.l.a), then make the move l.w.l.a (resp. 2. l.w. a), and repeat LOOP. □ 

Lemma 10.3 W-i.Fi A ... A oF n — > i(Fi A ... A F n ). Furthermore, there is an effective procedure that takes 
any particular value of n and constructs an EPM £ such that, for any Fl, . . . , F n , £W-iFi A ... A iF„ — > 
i(Fi A ... A F n ). 

Proof. The idea of a uniform solution here is rather similar to the one in the proof of Lemma 10.2. 
Here is the algorithm: 

Procedure LOOP: Keep granting permission until the adversary makes a move 7. Then: 
If 7 = 2.w:, then make the n moves l.l.w:, . . . , l.n.w:, and repeat LOOP: 

If 7 = 2.w.i.a (resp. 7 = l.i.w.a) where 1 < i < n, then make the move l.i.w.a (resp. 2.w.i.a), and 
repeat LOOP. □ 

Lemma 10.4 IFi^ 1 -> iFAoF. Furthermore, there is an EPM £ such that, for any F, £HriF -> i-FAo-F- 

Proof. The idea of a winning strategy here is to first replicate the antecedent turning it into something 
"essentially the same" 9 as oF* A oF* , and then switch to a strategy that is "essentially the same as" 
the ordinary copy-cat strategy. Precisely, here is how £ works: it makes the move l.e: (replicating the 
antecedent), after which it follows the following algorithm: 

Procedure LOOP: Keep granting permission until the adversary makes a move 7. Then: 

9 Using the notation o introduced in Section 13 of [7], in precise terms this "something" is b(F* of*), 
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If 7 = 1.0a (resp. 7 = 2.1. a), then make the move 2.1. a (resp. 1.0a), and repeat LOOP; 
If 7 = 1.1a (resp. 7 = 2. 2. a), then make the move 2. 2. a (resp. 1.1a), and repeat LOOP; 
If 7 = I.e. a, then make the moves 2. I.e. a and 2.2.e.a, and repeat LOOP. □ 

Remember from Section 4 that, when t is a constant, e(t) = t. 

Lemma 10.5 For any INT -formula K, lho$ — * K. Furthermore, there is an effective procedure that takes 
any INT-formula K and constructs a uniform solution for 0$ — > K. 

Proof. We construct an EPM £ and verify that it is a uniform solution for 0$ — > K; both the 
construction and the verification will be done by induction on the complexity of K. The goal in each case is 
to show that £ generates a T-won run of e[(i$ — > K)*] = oe[$*] — > e[P*] which, according to our convention, 
we may write with "e" omitted. 

Case 1: K = %. This case is taken care of by Lemma 10.1. 

Case 2: if is a fc-ary nonlogical atom P(t\, . . . , Let Ci, . . . , c& be the constants e(ti), . . . , e(ifc), 
respectively. Evidently in this case e[K*] = e[P*(ci, . . . , Cfc)], so, the game for which £ needs to generate a 
winning run is o$* — ► P*(ci, . . . , Cfc). Assume (P(ci, . . . , Cfc))* is conjunct #to of (the infinite n-conjunction) 
$*. We define £ to be the EPM that acts as follows. At the beginning, if necessary (i.e. unless all U are 
constants), it reads the valuation tape to find ci,. .. ,Cfe. Then, using this information, it finds the above 
number to and makes the move 'I.e. to', which can be seen 10 to bring the game down to oP*(ci, . . . , Cfc) — > 
P*(ci, . . . , Cfc). After this move, 5 switches to the strategy whose existence is stated in Lemma 10.1. 

Case 3: K = ] Q E -> P. By Lemma 8.5(b), there is a uniform solution for (i$ F) (i$ A D P -> P). 
Lemmas 8.5(d) and 9.5 allow us to convert the latter into a uniform solution V for (0$ — > P) — > (0$ — > 
(oE ^ P)). By the induction hypothesis, there is also a uniform solution C for 0$ — > P. Applying Lemma 
9.4 to C and £>, we find a uniform solution £ for 0$ — > (oP — ► P). 

Case ^: P = Pi U . . . U E n . By the induction hypothesis, we know how to construct an EPM Ci with 
Cii-o$ — > Pi. Now wc define £ to be the EPM that first makes the move 2.1, and then plays the rest of the 
game as C\ would play. £ can be seen to be successful because its initial move 2.1 brings (0$ — > K)* down 
to (i$ -» Pi)*. 

Case 5: K = Pi l~l . . . I~l P„. By the induction hypothesis, for each i with 1 < i < n we have an EPM 
Ci with CilFo$ — > Pi- Wc define f to be the EPM that acts as follows. At the beginning, £ keeps granting 
permission until the adversary makes a move. The clean environment assumption guarantees that this move 
should be 2.i for some 1 < i < n. It brings (0$ — ► Pi l~l . . . n E n )* down to (0$ — > Pi)*. If and after such a 
move 2.i is made, £ continues the rest of the play as Ci. 

Case 6: K = UxE(x). By the induction hypothesis, there is an EPM Ci with Cii-o$ — > P(l)- Now we 
define £ to be the EPM that first makes the move 2.1, and then plays the rest of the game as Ci. £ can be 
seen to be successful because its initial move 2.1 brings (i$ UxP(x))* down to (i$ -> P(l))*. 

Case 7: K = \~\xE(x). By the induction hypothesis, for each constant c there is (and can be effectively 
found) an EPM C c with C c lhi$ -> P(c). Now we define £ to be the EPM that acts as follows. At the begin- 
ning, £ keeps granting permission until the adversary makes a move. By the clean environment assumption, 
such a move should be 2.c for some constant c. This move can be seen to bring ((0$ — > rixP(x))) down to 
(0$ — > P(c)) *. If and after the above move 2.c is made, £ plays the rest of the game as C c . □ 

Lemma 10.6 Assume n > 2, 1 < i < n, and t is a term free for x in G(x). Then the following uniform 
validities hold. Furthermore, in each case there is an effective procedure that takes any particular values of 
n, i, t and constructs an EPM which is a uniform solution for the corresponding formula no matter what 
the values of F\, . . . ,F n and/or G(x) ( as long as t is free for x in G{x) ) are. 

a) ^i{F 1 n...UF n )^lF l ; 

b) FirixG(x) -» iG(i); 

c) H(Pi U . . . U F n ) -► iPi U . . . U iP„; 

d) FiUxG(x) -► UxiG(x). 

10 See Proposition 13.8 of [7]. 
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Proof. Below come winning strategies for each case. 

Clause (a): Make the move 'I.e.*'. This brings the game down to ii? -> ^F*. Then switch to CCS. 

Clause (b): Let c = e(t). Read c from the valuation tape if necessary, i.e., if t is a variable (otherwise, 
simply c = t). Then make the move 'l.e.c'. This brings the game down to oG*(c) — ► iG*(c). Now, switch 
to CCS. 

Clause (c): Keep granting permission until the adversary makes a move 'l.e.f (1 < j < n), bringing the 
game down to oF* —> oF* U . . . U oF*. If and after such a move is made (and if not, a win is automatically 
guaranteed), make the move '2.j', which brings the game down to oF* — > oF*. Finally, switch to CCS. 

Clause (d): Keep granting permission until the adversary makes the move 'l.e.c' for some constant c. 
This brings the game down to oG*(c) — ► UxoG*(x). Now make the move '2.c', which brings the game down 
to iG*(c) -> iG*(c). Finally, switch to CCS. □ 

Lemma 10.7 H-I~la;(i? , (a;) -» G(x)) -> (l~la;F(a;) -> rixG(x)). Furth ermore, there is an EPM £ such that, 
for any F(x) and G{x), £fr\lx(F(x) -> G{x)) -> (rixF(x) -> rixG(x)) . 

Proof. Strategy: Wait till the environment makes the move '2.2.c' for some constant c. This brings the 
rixG*(x) component down to G*(c) and hence the entire game to \ n \x{F*(x) — ► G*(x)) — > (rixF*(x) — > 
G*(c)). Then make the same move c in the antecedent and in \~\xF*(x), i.e. make the moves 'l.c' and '2.1.c'. 
The game will be brought down to (F*(c) G*(c)) -> (F*(c) G*(c)). Finally, switch to CCS. □ 

Lemma 10.8 t-\lx(F 1 (x)A. . .AF n {x)AE(x) G{x)) -> (l~lxFi(x)A. . ./\r\xF n (x)/\UxE{x) UxG(x)) . 
Furthermore, there is an effective procedure that takes any particular value of n and constructs an EPM 
£ such that, for any F^x), F n (x), E(x), G(x), £§-\lx(F 1 (x) A ... A F n (x) A E(x) G(x)) 
(rixFi(x) A ... A V~\xF n (x) A UxE(x) -> UxG(x)) . 

Proof. Strategy for n: Wait till the environment makes a move c in the \-\xE*(x) component. Then 
make the same move c in UxG*(x), \~\x(F*(x) A ... A F*(x) A E*(x) —> G*(x)) and each of the \~\xF*(x) 
components. After this series of moves the game will have evolved to (_F*(c)A. . .AF*(c) AE*(c) — > G*(c)) — > 
(F*(c) A ... A F*(c) A E*(c) -» G*(c)) . Now switch to CC5. □ 

Lemma 10.9 Assume t is free for x in F(x). Then VhF(t) — ► UxF(x). Furthermore, there is an effective 
function that takes any t and constructs an EPM £ such that, for any F(x), whenever t is free for x in F(x), 
£§-F(t) -> UxF(x). 

Proof. Strategy: Let c = e(t). Read c from the valuation tape if necessary. Then make the move '2.c', 
bringing the game down to F*(c) — > F*(c). Then switch to CCS. □ 

Lemma 10.10 Assume F does not contain x. Then t-F — ► rixF. Furthermore, there is an EPM £ such 
that, for any F and x, as long as F does not contain x, £frF — > \~~\xF. 

Proof. In this case we prefer to explicitly write the usually suppressed parameter e. Consider an 
arbitrary F not containing x, and an arbitrary interpretation * admissible for F — > \~~\xF. The formula 
F — ► rixF contains x yet F does not. From the definition of admissibility and with a little thought we can 
see that F* does not depend on x. In turn, this means — as can be seen with some thought — that the 
move c by the environment (whatever constant c) in e[l _ lxi ;1 *] brings this game down to efi 71 *]. With this 
observation in mind, the following strategy can be seen to be successful: Wait till the environment makes 
the move '2.c' for some constant c. Then read the sequence 'Lai', ■ ■ ■ , 'l.a„' of (legal) moves possibly made 
by the environment before it made the move '2.c', and make the n moves '2.ai', . . . , l 2.a n \ It can be seen 
that now the original game e[F*} — > e[l _ lxi ;l *] will have been brought down to ($)e{F*} — > ($)e[F*], where 
$ = (Tcti, . . . , Ta n ). So, switching to CCS at this point guarantees success. □ 

Lemma 10.11 Assume F(x) does not contain y. Then i~\~\yF(y) —> rixF(x) and W-UxF(x) — > VAyF(y). 
In fact, CCSh-r\yF{y) \lxF(x) and CCS?hL\xF(x) -» UyF{y). 
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Proof. Assuming that F(x) does not contain y and analyzing the relevant definitions, it is not hard to 
see that, for any interpretation * admissible for \~~\yF(y) — > \~~\xF(x) and/or UxF(x) — > \-lyF(y), we simply 
have (T~\yF(y)} = (T~\xF(x)) and (UyF(y)) = (LixF(x)) . So, in both cases we deal with a game of the 
form A — ► A, for which the ordinary copy-cat strategy is successful. □ 

Our proof of the following lemma is fairly long, for which reason it is given separately in Section 11: 

Lemma 10.12 t-^F — > ooF. Furthermore, there is an EPM £ such that, for any F, Efr^F — > ioF. 

11 Proof of Lemma 10.12 

Roughly speaking, the uniform solution £ for qF — > oqF that we are going to construct essentially uses 
a copy-cat strategy between the antecedent and the consequent. However, this strategy cannot be applied 
directly in the form of our kind old friend CCS. The problem is that the underlying tree-structure (see 
Remark 3.9) of the multiset of (legal) runs of F* that is being generated in the antecedent should be a 
simple tree T, while in the consequent it is in fact what can be called a tree T" of trees. The trick that £ 
uses is that it sees each edge of T in one of two — blue or yellow — colors. This allows £ to associate with 
each branch y of a branch x of T" a single branch z of T, and vice versa. Specifically, with x, y, z being 
(encoded by) bit strings, z is such that the subsequence of its blue-colored bits (=edges) coincides with x, and 
the subsequence of its yellow-colored bits coincides with y. By appropriately "translating" and "copying" 
in the antecedent the replicative moves made by the environment in the consequent, such an isomorphism 
between the branches of T and the branches of branches of T" can be successfully maintained throughout 
the play. With this one-to-one correspondence in mind, every time the environment makes a (nonreplicative) 
move in the position(s) of F* represented by a leaf or a set of leaves of T, the machine repeats the same move 
in the position(s) represented by the corresponding lcaf-of-leaf or leaves-of-leaves of T", and vice versa. The 
effect achieved by this strategy is that the multisets of all runs of F* in the antecedent and in the consequent 
of oF* — > ooF* are identical, which, of course, guarantees a win for £. 

Let us now define things more precisely A colored bit b is a pair (c, d) , where c, called the content of 
b, is in {0, 1}, and d, called the color of b, is in {blue, yellow}. We will be using the notation c ("blue c") 
for the colored bit whose content is c and color is blue, and c ( "yellow c" ) for the bit whose content is c and 
color is yellow. 

A colored bit string is a finite or infinite sequence of colored bits. Consider a colored bit string v. The 
content of v is the result of "ignoring the colors" in v, i.e. replacing every bit of v by the content of that bit. 
The blue content of v is the content of the string that results from deleting in v all but blue bits. Yellow 
content is defined similarly. We use y_, v and v to denote the content, blue content and yellow content of v, 
respectively. Example: if v = 10001, we have v_ = 10001, v = 10 and v = 001. As in the case of ordinary bit 
strings, e stands for the empty colored bit string. And, for colored bit strings w and u, w <u again means 
that w is a (not necessarily proper) initial segment of u. 

Definition 11.1 A colored tree is a set T of colored bit strings, called its branches, such that the 
following conditions are satisfied: 

a) The set {v | v £ T} — that we denote by T — is a tree in the sense of Convention 3.5. 

b) For any w, u £ T, if W = w, then w = u. 

c) For no v £ T do we have {v0, vl} C T or {v0, vl} C T. 
A branch v of T is said to be a leaf iff w is a leaf of T. 

When represented in the style of Figure 1 of [7] (page 36), a colored tree will look like an ordinary tree, 
with the only difference that now every edge will have one of the colors blue or yellow. Also, by condition 
(c), both of the outgoing edges ("sibling" edges) of any non-leaf node will have the same color. 

Lemma 11.2 Assume T is a colored tree, and w, u are branches ofT with w <u and w<u. Then w < u. 

Proof. Assume T is a colored tree, w,u £T, and w u. We want to show that then w ^ u or w ^ u. 
Let v be the longest common initial segment of w and u, so we have w = vw' and u = vu' for some w' , u' 
such that it;' is nonempty and w' and u' do not have a nonempty common initial segment. Assume the first 
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bit of w' is (the cases when it is 1, or 1, of course, will be similar). If u' is empty, then w obviously 
contains more blue bits than u does, and we are done. Assume now u' is nonempty, in particular, b is the 
first bit of u'. Since w' and v! do not have a nonempty common initial segment, b should be different from 
0. By condition (b) of Definition 11.1, the content of b cannot be (for otherwise we would have vO = vb 
and hence 6 = 0). Consequently, b is either 1 or 1 . The case b = 1 is ruled out by condition (c) of Definition 
11.1. Thus, 6=1. But the blue content of vO is W while the blue content of vl is vl. Taking into account 
the obvious fact that the former is an initial segment of w and the latter is an initial segment of u, we find 
w 2< u. □ 

Now comes a description of our EPM £. At the beginning, this machine creates a record T of the type 
'finite colored tree', and initializes it to {e}. After that, £ follows the following procedure: 

Procedure LOOP: Keep granting permission until the adversary makes a move 7. If 7 satisfies the 
conditions of one of the following four cases, act as the corresponding case prescribes. Otherwise go to an 
infinite loop in a permission state. 

Case (i): 7 = 2.w: for some bit string w. Let Vi,. . . ,v k be 11 all of the leaves v of T with w = v. Then 
make the moves l.v^:, . . . , l.v_ k :, update T to T U {t>i0, V\l, . . . , v k 0, v k l}, and repeat LOOP. 

Case (ii): 7 = 2.w.u: for some bit strings w, u. Let Vi,. . . ,v k be all of the leaves v of T such that w ^ v 
and u = v. Then make the moves Lt^:, . . . , 1-Uk-, update T to TL){viO, v\l, . . . , v k 0, v k l}, and repeat LOOP. 

Case (Hi): 7 = 2.w.u.a for some bits strings w, u and move a. Let V\, . . . , v k be all of the leaves v of T 
such that w ^ v and u <v. Then make the moves l.t^.a, . . . , l.v_ k .a, and repeat LOOP. 

Case (iv): 7 = l.w.a for some bit string w and move a. Let vi, . . . ,v k be all of the leaves v of T with 
w ^ v_. Then make the moves 2.v\.v l .a, . . . , 2.v k .v k .a, and repeat LOOP. 

Fix any interpretation *, valuation e and e-computation branch B of £ . Let O be the run spelled by B. 
From the above description it is immediately clear that B is a fair. Hence, in order to show that £ wins, it 
would be sufficient to show that Wn^ = 7 Notice that the work of £ docs not depend on e. 

And, as e is fixed, we can safely and unambiguously omit this parameter (as we often did in the previous 
section) in expressions such as e[A], Lr^ or Wn^ and just write or say A, hr A or Wn" 4 . Of course, £ is 
interpretation-blind, so as long as it wins oF* — > boF*, it is a uniform solution for bF — > oo-F- 

Let N = {1, ...,m} if LOOP is iterated the finite number m of times in B, and N = {1,2,3,...} 
otherwise. For i e N, we let Tj denote the value of record T at the beginning of the ith iteration of LOOP; 
Oj will mean the initial segment of 9 consisting of the moves made by the beginning of the ith iteration of 
LOOP. Finally, $ 4 will stand for ^O, 1 ' and for Qf. 

From the description of LOOP it is immediately obvious that, for each i £ N, Ti is a finite colored tree, 
and that T\ C T 2 C . . . C T,. In our subsequent reasoning we will implicitly rely on this fact. 

Lemma 11.3 For every i with i £ N, we have: 

a) 4>j is prelegal and Tree(<I>i) = Tj. 
is prelegal. 

c) For every leaf x of Tree^j), ^ a is prelegal. 

d) For every leaf z ofTi, ~z is a leaf of Tree(\l/i) and z_ is a leaf ofTme(^f z ). 

e) For every leaf x o/Tree(\E'i) and every leaf y of Tree (^^ x ) , there is a leaf z ofTi such that x = ~z and 
y = z. By Lemma 11.2, such a z is unique. 

f) For every leaf z ofT u ^f 1 = (#p)=^. 

g) 8j is a legal position of bF* — > bbF* ; hence, $j £ Lr 6F and £ Lr 66F . 

Proof. We proceed by induction on i. The basis case with i = 1 is rather straightforward for each 
clause of the lemma and we do not discuss it. For the induction step, assume i + 1 £ N, and the seven 
clauses of the lemma are true for i. 

Clause (a): By the induction hypothesis, $i is prelegal and Tree((&i) = T^. Assume first that the ith 
iteration of LOOP deals with Case (i), so that = Lt^:, . . . , -Lv k :). Each of v_i, . . . , v_ k is a leaf of 

11 In each of the four cases we assume that the list vi, . . . , v k is arranged lexicographically. 
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T i; i.e. a leaf of 7Vee($j). This guarantees that is prelegal. Also, by the definition of function Tree, 

we have Tree($i + i) = Tree($i) U {liO, Wjl, . . . ,WfeO,u fc l}. But the latter is nothing but T i+1 as can be seen 
from the description of how Case (i) updates T to T i+ \. A similar argument applies when the ith iteration 
of LOOP deals with Case (ii). Assume now the ith iteration of LOOP deals with Case (iii). Note that 
the moves made in the antecedent of of* — > bbF* (the moves that bring <J>i to are nonreplicative — 

specifically, look like V.a where V G T f = Tree($ i ). Such moves yield prelegal positions and do not change 
the value of Tree, so that Tree(&i) = Tree($i + i). It remains to note that T is not updated in this subcase, 
so that we also have T i+1 = T i . Hence Tree(<J>i+i) = T i+1 . Finally, suppose the ith iteration of LOOP deals 
with Case (iv). It is the environment who moves in the antecedent of bF* — > oof 1 *, and does so before the 
machine makes any moves. Then the clean environment assumption — in conjunction with the induction 
hypothesis — implies that such a move cannot bring $j to an illegal position of bF* and hence cannot bring 
it to a non-prelegal position. So, 3>j + i is prelegal. As for Tree(<£>i + i) = T i+1 , it holds for the same reason as 
in the previous case. 

Clause (b): If the ith iteration of LOOP deals with Case (i), (ii) or (iii), it is the environment who moves in 
the consequent of bF* — ► bbF*, and the clean environment assumption guarantees that ^,+1 is prelegal. As- 
sume now that the ith iteration of LOOP deals with Case (iv), so that ^i+i = (^t, TUi.t^.a, . . . , Tvk-y_ k .a). 
By the induction hypothesis for clause (d), each Vj (1 < j < k) is a leaf of Tree(^i), so adding the moves 
Tvi.^.a, . . . , Tvk-v k does not bring "J^ to a non-prelegal position, nor docs it modify Tree(^j) because the 
moves are nonreplicative. Hence 'J'j+i is prelegal. 

Clause (c): Just as in the previous clause, when the ith iteration of LOOP deals with Case (i), (ii) 
or (iii), the desired conclusion follows from the clean environment assumption. Assume now that the ith 
iteration of LOOP deals with Case (iv). Consider any leaf x of Tree(^ r j+i). As noted when discussing 
Case (iv) in the proof of Clause (b), TVee(^j) = Tree^j+i), so x is also a leaf of Tree(^i). Therefore, 
if jjj^ = ^ x \ the conclusion that IS prelegal follows from the induction hypothesis. Suppose now 

'fy-f+i 7^ ■ Note that then looks like (\^ x , Ty\.a, . . . , Ty m .a), where for each yj (1 < j < m) we 

have z = x and z = yj for some leaf z of T. By the induction hypothesis for clause (d), each such yj is a leaf 
of Tree(^i' x ). By the induction hypothesis for the present clause, $>^ x is prelegal. Adding to such a position 
the nonreplicative moves Ty^.a, . . . , Ty m .a — where the yj are leaves of Tree{^>^ x ) — cannot bring it to a 
non-prelegal position. Thus, remains prelegal. 

Clauses (d) and (e): If the ith iteration of LOOP deals with Cases (iii) or (iv), T, is not modified, and 
no moves of the form x: or x.y: (where x,y are bit strings) are made in the consequent of bF* — > bbF*, so 
Tree^i) and Tree(^^ x ) (any leaf x of Tree^i)) are not affected, either. Hence Clauses (d) and (e) for i + 1 
are automatically inherited from the induction hypothesis for these clauses. This inheritance also takes place 
- even if no longer "automatically" — when the ith iteration of LOOP deals with Case (i) or (ii). This 
can be verified by a routine analysis of how Cases (i) and (ii) modify 7* and the other relevant parameters. 
Details are left to the reader. 

Clause (f): Consider any leaf z of T i+ i. When the ith iteration of LOOP deals with Case (i) or (ii), 
no moves of the form x.a are made in the antecedent of bF* — > bbF*, and no moves of the form x.y. a arc 
made in the consequent (any bit strings x,y). Based on this, it is easy to see that for all bit strings x,y — 
including the case x — ~z and y = z — we have = ^ x and ('&^ 1 )- y = (^i x )- y . Hence clause (f) for 
i + 1 is inherited from the same clause for i. Now suppose the ith iteration of LOOP deals with Case (iii). 
Then T,+i = Ti and hence z is also a leaf of Tj. From the description of Case (iii) one can easily see that if 
w^zoiu^z,we have $ ^ = <S>f J and (*^)- 2 = (*,-")--, so the equation $^ = (*^)- 2 is true by 
the induction hypothesis; and if w -< z and u -< z, then $^ = -La) and (*^ z 1 )- £ = {{^ Z )- L , ^a}- 

But, by the induction hypothesis, = (5'^ z )--. Hence ®f+i = (*i+i)~-- A similar argument applies 
when the ith iteration of LOOP deals with Case (iv). 

Clause (g): Note that all of the moves made in any of Cases (i)-(iv) of LOOP have the prefix T.' or '2.', 
i.e. are made either in the antecedent or the consequent of bF* — > bbF*. Hence, in order to show that 0, + i 
is a legal position of bF* — ► bbF*, it would suffice to verify that <j> i+ i e Lr 6F and G Lr 6bF . 

Suppose the ith iteration of LOOP deals with Case (i) or (ii). The clean environment assumption 
guarantees that ^j+i G Lr* iF . In the antecedent of bF* — ► bbF* only replicative moves are made. 
Rcplicative moves can yield an illegal position ($j+i in our case) of a o-game only if they yield a non- 
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prelegal position. But, by clause (a), is prelegal. Hence it is a legal position of oF* . 

Suppose now the ith iteration of LOOP deals with Case (hi). Again, that "J/i+i G Lr 1 "^ is guaranteed 
by the clean environment assumption. So, wc only need to verify that ^i+i G Lr oF . By clause (a), this 
position is prelegal. So, it remains to see that, for any leaf y of 7Vee($ i+ i), G Lr oF . Pick an arbitrary 
leaf y of Tree($ i+1 ) — i.e., by clause (a), of T i+1 . Let z be the leaf of Tj + i with y = z_. We already know 
that ^i+i G Lr iAF . By clause (d), we also know that z is a leaf of Tree(^> i+\) ■ Consequently, G Lr oF . 
Again by clause (d), z is a leaf of Tree^^}. Hence, (S^)-- should be a legal position of F*. But, by 
clause (f), ^ = (*^)^. Thus, g Lr F * . 

Finally, suppose the ith iteration of LOOP deals with Case (iv). By the clean environment assumption, 
G Lr oF . Now consider ^j+i. This position is prelegal by clause (b). So, in order for 'J'i+i to be a legal 
position of 00F*, for every leaf x of Tree(^ i+ i) we should have G Lr oF . Consider an arbitrary such 

leaf x. By clause (c), is prelegal. Hence, a sufficient condition for G Lr iF is that, for every leaf 

y of Tree^i^), (^i^i)- y G Lr F . So, let y be an arbitrary such leaf. By clause (e), there is a leaf z of T i+ i 
such that z = x and z — y. Therefore, by clause (f), <&f_fi = (^^i)- v ■ But we know that <f> i+ i G Lr* F and 
hence (with clause (a) in mind) $f+i G Lr F . Consequently, (vE , ^ l f 1 )- 2/ G Lr F . □ 

Lemma 11.4 For every finite initial segment T of 0, there is i E N such that T is a (not necessarily 
proper) initial segment of 0j and hence of every Qj with i < j G N. 

Proof. The statement of the lemma is straightforward when there are infinitely many iterations of 
LOOP, for each iteration adds a nonzero number of new moves to the run and hence there are arbitrarily 
long OiS, each of them being an initial segment of O. Suppose now LOOP is iterated a finite number m of 
times. It would be (necessary and) sufficient to verify that in this case O = O m , i.e. no moves are made 
during the last iteration of LOOP. But this is indeed so. From the description of LOOP we see that the 
machine does not make any moves during a given iteration unless the environment makes a move 7 first. 
So, assume _L makes move 7 during the mth iteration of LOOP. By the clean environment assumption, we 
should have (0 m , -L7) G Lr oF ^ ooF . It is easy to see that such a 7 would have to satisfy the conditions of 
one of the Cases (i)-(iv) of LOOP. But then there would be an (in + l)th iteration of LOOP, contradicting 
out assumption that there are only m iterations. □ 

Let us use $ and "J to denote ->0 1- and O 2 ', respectively. Of course, the statement of Lemma 11.4 is 
true for $ and W (instead of O) as well. Taking into account that, by definition, a given run is legal if all of 
its finite initial segments are legal, the following fact is an immediate corollary of Lemmas 11.4 and 11.3(g): 

G Lr iF *^ iiF * . Hence, $ G Lr iF * and * G Lr iiF * . (6) 

To complete our proof of Lemma 10.12, we need to show that Wn oF ^ ooF (©} = T. With (6) in mind, 
if Wn iiF *(*) = T, we are done. Assume now Wn ooF (vp) = _L. Then, by the definition of i, there is an 
infinite bit string x such that ^!- x is a legal but lost (by T) run of oF* . This means that, for some infinite 
bit string y, 

Wn r ((^f 9 ) = l. (7) 

Fix these x and y. For each i G N, let Xi denote the (obviously unique) leaf of Tree(^i) such that Xi ^ x; 
and let yi denote the (again unique) leaf of Treefi 1 ^') such that yi ^< y. Next, let z% denote the leaf of T, 
with Zi = Xi and z { — yi. According to Lemma 11.3(e), such a z% exists and is unique. 

Consider any i with i + 1 G N. Clearly Xi ^ x i+i and y^ ^ Vi+i- By our choice of the Zj, we then have 
Zi d: Zi+i and z t < z i+1 . Hence, by Lemma 11.2, Zi < z i+1 . Let us fix an infinite bit string z such that for 
every i G N ,'z i ^ z. Based on the just-made observation that we always have Zi -< Zi+\, such a z exists. 

In view of Lemma 11.4, Lemma 11.3(f) easily allows us to find that <E>- Z = (fy- x )- v . Therefore, by (7), 
Wn F (<J>- Z ) = _L. By the definition of o, this means that Wn iF ($) = _L. Hence, by the definition of — > 
and with (6) in mind, Wn iF%iiF "(e) = T. Done. 
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12 Proof of Theorem 7.1 



Now we are ready to prove our main Theorem 7.1. Consider an arbitrary sequent S with INT h S 1 . By 
induction on the INT-derivation of S, we are going to show that S has a uniform solution £. This is 
sufficient to conclude that INT is 'uniformly sound'. The theorem also claims 'constructive soundness', i.e. 
that such an £ can be effectively built from a given INT-derivation of S. This claim of the theorem will 
be automatically taken care of by the fact that our proof of the existence of £ is constructive: the uniform- 
validity and closure lemmas on which we rely provide a way for actually constructing a corresponding 
uniform solution. With this remark in mind and for the considerations of readability in what follows 
we only talk about uniform validity without explicitly mentioning uniform solutions for the corresponding 
formulas/sequents and without explicitly showing how to construct such solutions. Also, wc no longer use 
=>or (k, seeing each sequent F K as the formula p_F — > K and each subformula E\ o— E 2 of such a 
formula as o-Ei — > E 2 . This is perfectly legitimate because, by definition, (F => K)* = ( pF — ► K)* and 
(Ei o— E2)* = (oE\ — > E 2 )* . 

There are 15 cases to consider, corresponding to the 15 possible rules that might have been used at 
the last step of an INT-derivation of S, with S being the conclusion of the rule. In each non-axiom case 
below, "induction hypothesis" means the assumption that the premise(s) of the corresponding rule is (are) 
uniformly valid. The goal in each case is to show that the conclusion of the rule is also uniformly valid. 
"Modus ponens" should be understood as Lemma 9.4, and "transitivity" as Lemma 9.5. 

Identity: Immediately from Lemma 10.1. 

Domination: Immediately from Lemma 10.5. 

Exchange: By the induction hypothesis, UrbG A oE A bF A b_H_ — > K. And, by Lemma 8.5(a), W-(oG A 
hEAhFAhH_ -^K)-> (oG_AoF AoE AqH_ -» K). Applying modus ponens yields N>GAoFA FAoff -» K. 

Weakening: Similar to the previous case, using Lemma 8.5(b) instead of 8.5(a). 

Contraction: By Lemma 8.5(c) (with empty U), W-( F — ► bF A bF) — > (iG A bF — > b_G_ A bF A bF). 
And, by Lemma 10.4, fhbF -> bF A AF. Hence, by modus ponens, UrbG A bF — > bG A bF A bF. But, by the 
induction hypothesis, UrbG A bF A b F — > K . Hence, by transitivity, ffl-pG A bF — > K. 

Right o-: From Lemma 8.5(d), HI- (AG A AF -> K) -> (iG -» (AF -> A")). And, by the induction 
hypothesis, H-jG A AF — ► if. Applying modus ponens, we get H-jG — > (AF — > if). 

Left o— : By the induction hypothesis, 

l-iGAiJ'-f Jfi; (8) 
Fjg -> K 2 . (9) 

Our goal is to show that 

N>G A iff A b(bK 2 -> F) -> Xi. (10) 

By Lemma 9.1, (9) implies N>(A_ff -» /f 2 ). Also, by Lemma 10.2, N>(Aff -» #2) -> (A A_ff -> bK 2 ). 
Applying modus ponens, we get HI — oH — > AF/ 2 . Again using Lemma 9.1, we find l-A(A A_ff — > A-K2), which, 
(again) by Lemma 10.2 and modus ponens, implies 

^AAA_ff^ AAf; 2 . (11) 

Combining Lemmas 8.5(c) (with empty IF, Z7) and 10.12, by modus ponens, we find Wr bH — ► AA-ff - Next, 
by lemma 10.3, Ir bbH — > o dff . Hence, by transitivity, HI- A if — > A A-H" . At the same time, by Lemma 10.12, 
UFA A if — > bb bH . Again by transitivity, HI- A if — > bb bH . This, together with (11), by transitivity, yields 

l-Alf ii-Sk- (12) 
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Next, by Lemma 10.2, 

N>(iF 2 ^F)^(iiF 2 ^iF). (13) 

From Lemma 8.5(e), 

Hi(iF 2 F) -» (iiF 2 iF)) A (iff — > AiF 2 ) -» (i(ii^ 2 -» F) -► (iff -> A* 1 )). 
The above, together with (13) and (12), by modus ponens, yields 

Fi(iF 2 ^F) ^ (iff -►A* 1 )- (14) 

By Lemma 8.5(f), 

F(i(iF 2 ^ F) ^ (iff ->iF)) A(iGAiF^ffi) -f (iGAiff Ai(iF 2 -> F) (15) 

From (14), (8) and (15), by modus ponens, we obtain the desired (10). 

Right By the induction hypothesis, Hr-jG — > Fi, Hr-AG — > F„. And, from Lemma 8.5(h), 
F(iG -» Ki) A . . . A (AG -> K n ) -» (i_G -> Fi nTT. n F„). Modus ponens yields HFiG -» Fi n . . . n F n . 

Left n: By Lemma 10.6(a), W-A (Fi n . . . n F„) iF,; and, by Lemma 8.5(c), IF(i(Fi n . . . n F n ) -> 
iF) -> (iGAi(Fin...nF„) -> jG A jFj). Modus ponens yields iG A i(Fj n ... n F n ) — ► AG A AF;. But, 
by the induction hypothesis, BFiG A iF -> F. So, by transitivity, W-jG A i(Fi n . . . I~l F„) — > F. 

Right U: By the induction hypothesis, W-jG — > F^ According to Lemma 8.5(j), H- (<*>(? — > Fj) — ► ( jG — > 
Fi U ... U K n ). Therefore, by modus ponens, IF AG -> Fi U ... U F„. 

Left U: By the induction hypothesis, IH-jG A iFi — ► F, . . . , H-jG A iF„ — » ff • And, by Lemma 8.5(i), 
HoG A iFi F) A . . . A (iG A iF„ K) (iG A (iFi U . . . U iF„) -> F) . Hence, by modus ponens, 

H-iG A (oFi U . . . U AF„) — ► F. (16) 

Next, by Lemma 8.5(c), 

»F(i(Fi U ...UF„) -> iFi U ...uiF„) -» (iG Ai(Fi U . . . U F n ) — > AG A (iFi U . . . U AF„)) . 

But, by Lemma 10.6(c), IFi(Fi U . . . UF„) -» iFiU. . .UiF„. Modus ponens yields IhjG Aj (Fi U . . . UF») -> 
iG A (iFi U . . . U AF„). From here and (16), by transitivity, IhiG A i(Fi U . . . U F„) — > F. 

Right I - !: First, consider the case when iG is nonempty. By the induction hypothesis, W-jG — ► K(y). 
Therefore, by Lemma 9.2, KI— I (iG — > F(y)) and, by Lemma 10.7 and modus ponens, H-IHyAG — > rij/F(y). 
At the same time, by Lemma 10.10, N-AG — > \~\yoG. By transitivity, we then get H-AG — > n?/F(y). But, by 
Lemma 10.11, «Kn y F( ? y) -> l~lxF(x). Transitivity yields BFiG ria;F(a;). The case when iG is empty is 
simpler, for then H-jG — > rixF(x), i.e. i-\~\xK(x), can be obtained directly from the induction hypothesis 
by Lemmas 9.2, 10.11 and modus ponens. 

Left I - !: Similar to Left only using Lemma 10.6(b) instead of 10.6(a). 

Right U: By the induction hypothesis, IH-jG -> K(t). And, by Lemma 10.9, HrK(t) -> Ua;F(x). 
Transitivity yields IH-jG -> UxF(x). 

Left U: By the induction hypothesis, IH-jG A oF(y) — > F. This, by Lemma 9.2, implies M-flt/fiG A 
oF(y) — > F). From here, by Lemma 10.8 and modus ponens, we get 

FnyiG A UyiF(y) -» UyF. (17) 

By Lemma 8.5(c), H-( j_G -> Q^jG ) -> (iG A UyiF(y) -> flyiG A UyjF(y)) . This, together with Lemma 
10.10, by modus ponens, implies iG A UyAF(y) — > flyiG A UyiF(y). From here and (17), by transitivity, 
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i-iGAUyiF(y) -> Jf. But, by Lemmas 10.11, 8.5(c) and modus ponens, t-UjA\Jx}>F(x) -> AG A\Jy^>F(y). 
Hence, by transitivity, 

Id-AG A UxoF(x) — > K. (18) 

Next, by Lemma 8.5(c), ^r(^UxF{x) -> Ux^F(x)) -> (iGAoUiF(i) -> A_G A UzAi^a;)) . But, by Lemma 
10.6(d), Wr^UxF(x) Ua;AF(z). Modus ponens yields AG A iUa;F(x) -> AG A Uxi>F(x). From here and 
(18), by transitivity, IFAG A ^L\xF(x) -> K. 
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